Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
freebsdFreeBSD18AC074C-579F-11EC-AAC7-3065EC8FD3EC
HistoryDec 06, 2021 - 12:00 a.m.

chromium -- multiple vulnerabilities

2021-12-0600:00:00
vuxml.freebsd.org
14

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.05 Low

EPSS

Percentile

92.7%

JSON

Chrome Releases reports:

This release contains 22 security fixes, including:

[1267661] High CVE-2021-4052: Use after free in web apps.
Reported by Wei Yuan of MoyunSec VLab on 2021-11-07
[1267791] High CVE-2021-4053: Use after free in UI. Reported by
Rox on 2021-11-08
[1265806] High CVE-2021-4079: Out of bounds write in WebRTC.
Reported by Brendon Tiszka on 2021-11-01
[1239760] High CVE-2021-4054: Incorrect security UI in autofill.
Reported by Alesandro Ortiz on 2021-08-13
[1268738] High CVE-2021-4078: Type confusion in V8. Reported by
Nan Wang (@eternalsakura13) and Guang Gong of 360 Alpha Lab on
2021-11-09
[1266510] High CVE-2021-4055: Heap buffer overflow in
extensions. Reported by Chen Rong on 2021-11-03
[1260939] High CVE-2021-4056: Type Confusion in loader. Reported
by @_R0ng of 360 Alpha Lab on 2021-10-18
[1262183] High CVE-2021-4057: Use after free in file API.
Reported by Sergei Glazunov of Google Project Zero on
2021-10-21
[1267496] High CVE-2021-4058: Heap buffer overflow in ANGLE.
Reported by Abraruddin Khan and Omair on 2021-11-06
[1270990] High CVE-2021-4059: Insufficient data validation in
loader. Reported by Luan Herrera (@lbherrera) on 2021-11-17
[1271456] High CVE-2021-4061: Type Confusion in V8. Reported by
Paolo Severini on 2021-11-18
[1272403] High CVE-2021-4062: Heap buffer overflow in BFCache.
Reported by Leecraso and Guang Gong of 360 Alpha Lab on
2021-11-22
[1273176] High CVE-2021-4063: Use after free in developer tools.
Reported by Abdulrahman Alqabandi, Microsoft Browser Vulnerability
Research on 2021-11-23
[1273197] High CVE-2021-4064: Use after free in screen capture.
Reported by @ginggilBesel on 2021-11-23
[1273674] High CVE-2021-4065: Use after free in autofill.
Reported by 5n1p3r0010 on 2021-11-25
[1274499] High CVE-2021-4066: Integer underflow in ANGLE.
Reported by Jaehun Jeong(@n3sk) of Theori on 2021-11-29
[1274641] High CVE-2021-4067: Use after free in window manager.
Reported by @ginggilBesel on 2021-11-29
[1265197] Low CVE-2021-4068: Insufficient validation of
untrusted input in new tab page. Reported by NDevTK on
2021-10-31

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchchromium< 96.0.4664.93UNKNOWN

Related

kaspersky 2
nessus 8
openvas 12
mageia 2
archlinux 2
chrome 1
suse 4
fedora 4
cve 18
mscve 16
prion 18
cnvd 10
veracode 18
debiancve 18
ubuntucve 18
alpinelinux 6
rapid7blog 1
debian 1
osv 1
gentoo 1
photon 1
kaspersky
kaspersky
KLA12398 Multiple vulnerabilities in Opera
2021-12-14 00:00:00
KLA12381 Multiple vulnerabilities in Microsoft Browser
2021-12-10 00:00:00
nessus
nessus
Google Chrome < 96.0.4664.93 Multiple Vulnerabilities
2021-12-06 00:00:00
FreeBSD : chromium -- multiple vulnerabilities (18ac074c-579f-11ec-aac7-3065ec8fd3ec)
2021-12-13 00:00:00
Google Chrome < 96.0.4664.93 Multiple Vulnerabilities
2021-12-06 00:00:00
openvas
openvas
Google Chrome Security Updates (stable-channel-update-for-desktop-2021-02) - Windows
2021-12-10 00:00:00
Mageia: Security Advisory (MGASA-2021-0555)
2022-01-28 00:00:00
Google Chrome Security Updates (stable-channel-update-for-desktop-2021-02) - Linux
2021-12-10 00:00:00
mageia
mageia
Updated chromium-browser-stable packages fix security vulnerability
2021-12-11 01:19:07
Updated qtwebengine5 packages fix security vulnerability
2022-02-05 23:23:13
archlinux
archlinux
[ASA-202112-6] chromium: multiple issues
2021-12-11 00:00:00
[ASA-202112-7] vivaldi: multiple issues
2021-12-11 00:00:00
chrome
chrome
Stable Channel Update for Desktop
2021-12-06 00:00:00
suse
suse
Security update for chromium (important)
2021-12-14 00:00:00
Security update for chromium (important)
2021-12-28 00:00:00
Security update for opera (important)
2022-02-21 00:00:00
fedora
fedora
[SECURITY] Fedora 34 Update: chromium-96.0.4664.110-3.fc34
2022-01-07 01:12:20
[SECURITY] Fedora 35 Update: chromium-96.0.4664.110-3.fc35
2022-01-29 06:39:34
[SECURITY] Fedora 35 Update: qt5-qtwebengine-5.15.8-2.fc35
2022-01-30 01:44:13
cve
cve
CVE-2021-4057
2021-12-23 01:15:00
CVE-2021-4079
2021-12-23 01:15:00
CVE-2021-4052
2021-12-23 01:15:00
mscve
mscve
Chromium: CVE-2021-4057 Use after free in file API
2021-12-10 08:00:00
Chromium: CVE-2021-4066 Integer underflow in ANGLE
2021-12-10 08:00:00
Chromium: CVE-2021-4056: Type Confusion in loader
2021-12-10 08:00:00
prion
prion
Type confusion
2021-12-23 01:15:00
Design/Logic Flaw
2021-12-23 01:15:00
Heap overflow
2021-12-23 01:15:00
cnvd
cnvd
Google Chrome Type Obfuscation Vulnerability (CNVD-2022-02735)
2021-12-12 00:00:00
Google Chrome Resource Management Error Vulnerability (CNVD-2022-02627)
2021-12-08 00:00:00
Google Chrome out-of-bounds write vulnerability (CNVD-2022-02736)
2021-12-12 00:00:00
veracode
veracode
Remote Code Execution (RCE)
2021-12-12 10:08:31
Use After Free
2022-01-15 00:30:45
Type Confusion
2022-01-15 00:34:44
debiancve
debiancve
CVE-2021-4052
2021-12-23 01:15:00
CVE-2021-4056
2021-12-23 01:15:00
CVE-2021-4064
2021-12-23 01:15:00
ubuntucve
ubuntucve
CVE-2021-4056
2021-12-23 00:00:00
CVE-2021-4079
2021-12-23 00:00:00
CVE-2021-4054
2021-12-23 00:00:00
alpinelinux
alpinelinux
CVE-2021-4079
2021-12-23 01:15:00
CVE-2021-4078
2021-12-23 01:15:00
CVE-2021-4057
2021-12-23 01:15:00
rapid7blog
rapid7blog
Patch Tuesday - December 2021
2021-12-14 22:12:53
debian
debian
[SECURITY] [DSA 5046-1] chromium security update
2022-01-14 19:31:45
osv
osv
chromium - security update
2022-01-14 00:00:00
gentoo
gentoo
Chromium, Google Chrome, Microsoft Edge, QtWebEngine: Multiple Vulnerabilities
2022-08-14 00:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2023-3.0-0602
2023-06-21 00:00:00

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.05 Low

EPSS

Percentile

92.7%

JSON
Related for 18AC074C-579F-11EC-AAC7-3065EC8FD3EC
kaspersky2nessus8openvas12mageia2archlinux2chrome1suse4fedora4cve18mscve16prion18cnvd10veracode18debiancve18ubuntucve18alpinelinux6rapid7blog1debian1osv1gentoo1photon1