CVE-2021-30534

🗓️ 07 Jun 2021 19:25:48Reported by ChromeType

cve🔗 web.nvd.nist.gov📰️ 4 Media mentions👁 203 Views

Insufficient policy enforcement in iFrameSandbox in Google Chrome prior to 91.0.4472.77 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page

Reporter	Title	Published	Views	Family All 48
FreeBSD	chromium -- multiple vulnerabilities	25 May 202100:00	–	freebsd
AlpineLinux	CVE-2021-30534	7 Jun 202119:25	–	alpinelinux
ArchLinux	[ASA-202106-2] chromium: multiple issues	1 Jun 202100:00	–	archlinux
ArchLinux	[ASA-202106-33] opera: multiple issues	15 Jun 202100:00	–	archlinux
AstraLinux	Astra Linux - уязвимость в chromium	20 May 202605:53	–	astralinux
CNNVD	Google Chrome权限许可和访问控制问题漏洞	25 May 202100:00	–	cnnvd
CNVD	Google Chrome iFrameSandbox Permission License and Access Control Issues Vulnerability	26 May 202100:00	–	cnvd
Cvelist	CVE-2021-30534	7 Jun 202119:25	–	cvelist
Debian CVE	CVE-2021-30534	7 Jun 202119:25	–	debiancve
EUVD	EUVD-2021-17455	7 Oct 202500:30	–	euvd

NVD

Vulners

Node

google chromeRange<91.0.4472.77

Node

fedoraproject fedoraMatch33

fedoraproject fedoraMatch34

[
  {
    "product": "Chrome",
    "vendor": "Google",
    "versions": [
      {
        "lessThan": "91.0.4472.77",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PAT6EOXVQFE6JFMFQF4IKAOUQSHMHL54/
security	www.security.gentoo.org/glsa/202107-06
chromereleases	www.chromereleases.googleblog.com/2021/05/stable-channel-update-for-desktop_25.html
crbug	www.crbug.com/1151507
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ETMZL6IHCTCTREEL434BQ4THQ7EOHJ43/