Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
kasperskyKaspersky LabKLA12144
HistoryApr 14, 2021 - 12:00 a.m.

KLA12144 Multiple vulnerabiltiies in Google Chrome

2021-04-1400:00:00
Kaspersky Lab
threats.kaspersky.com
302

9.6 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

8.3 High

AI Score

Confidence

High

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.492 Medium

EPSS

Percentile

97.5%

JSON

Detect date:

04/14/2021

Severity:

High

Description:

Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, execute arbitrary code, obtain sensitive information, spoof user interface.

Affected products:

Google Chrome earlier than 90.0.4430.72

Solution:

Update to the latest version
Download Google Chrome

Original advisories:

Stable Channel Update for Desktop

Impacts:

ACE

Related products:

Google Chrome

CVE-IDS:

CVE-2021-212166.5High
CVE-2021-212216.5High
CVE-2021-212019.6Critical
CVE-2021-212028.6Critical
CVE-2021-212096.5High
CVE-2021-212058.1Critical
CVE-2021-212138.8Critical
CVE-2021-212048.8Critical
CVE-2021-212106.5High
CVE-2021-212195.5High
CVE-2021-212038.8Critical
CVE-2021-212126.5High
CVE-2021-212116.5High
CVE-2021-212078.6Critical
CVE-2021-212156.5High
CVE-2021-212185.5High
CVE-2021-212148.8Critical
CVE-2021-212175.5High
CVE-2021-212086.5High

References

Related

nessus 11
freebsd 2
kaspersky 1
chrome 1
osv 1
debian 1
openvas 6
archlinux 2
fedora 3
suse 3
alpinelinux 19
veracode 19
ubuntucve 19
debiancve 19
prion 19
cve 19
mscve 19
redhatcve 3
cnvd 1
gentoo 1
nessus
nessus
Google Chrome < 90.0.4430.72 Multiple Vulnerabilities
2021-04-14 00:00:00
FreeBSD : chromium -- multiple vulnerabilities (f3d86439-9def-11eb-97a0-e09467587c17)
2021-04-16 00:00:00
Google Chrome < 90.0.4430.72 Multiple Vulnerabilities
2021-04-14 00:00:00
freebsd
freebsd
chromium -- multiple vulnerabilities
2021-04-14 00:00:00
chromium -- multiple vulnerabilities
2021-05-25 00:00:00
kaspersky
kaspersky
KLA12145 Multiple vulnerabilities in Microsoft Browser
2021-04-15 00:00:00
chrome
chrome
Stable Channel Update for Desktop
2021-04-14 00:00:00
osv
osv
chromium - security update
2021-04-27 00:00:00
debian
debian
[SECURITY] [DSA 4906-1] chromium security update
2021-04-28 01:49:06
openvas
openvas
Debian: Security Advisory (DSA-4906-1)
2021-04-30 00:00:00
openSUSE: Security Advisory for Chromium (openSUSE-SU-2021:0629-1)
2021-05-01 00:00:00
Fedora: Security Advisory for chromium (FEDORA-2021-35d2bb4627)
2021-05-15 00:00:00
archlinux
archlinux
[ASA-202104-5] opera: multiple issues
2021-04-29 00:00:00
[ASA-202104-2] vivaldi: multiple issues
2021-04-29 00:00:00
fedora
fedora
[SECURITY] Fedora 34 Update: chromium-90.0.4430.93-1.fc34
2021-05-12 05:44:40
[SECURITY] Fedora 32 Update: chromium-90.0.4430.93-1.fc32
2021-05-12 05:35:46
[SECURITY] Fedora 33 Update: chromium-90.0.4430.93-1.fc33
2021-05-14 21:12:29
suse
suse
Security update for Chromium (critical)
2021-05-01 00:00:00
Security update for chromium (important)
2021-06-04 00:00:00
Security update for chromium (important)
2021-06-02 00:00:00
alpinelinux
alpinelinux
CVE-2021-21203
2021-04-26 17:15:00
CVE-2021-21205
2021-04-26 17:15:00
CVE-2021-21210
2021-04-26 17:15:00
veracode
veracode
Incorrect Calculation
2021-04-21 17:43:02
Privilege Escalation
2021-04-21 17:43:07
CVE-2021-21204
2021-04-21 17:43:26
ubuntucve
ubuntucve
CVE-2021-21215
2021-04-26 00:00:00
CVE-2021-21207
2021-04-26 00:00:00
CVE-2021-21208
2021-04-26 00:00:00
debiancve
debiancve
CVE-2021-21215
2021-04-26 17:15:00
CVE-2021-21202
2021-04-26 17:15:00
CVE-2021-21207
2021-04-26 17:15:00
prion
prion
Double free
2021-04-26 17:15:00
Design/Logic Flaw
2021-04-26 17:15:00
Input validation
2021-04-26 17:15:00
cve
cve
CVE-2021-21219
2021-04-26 17:15:00
CVE-2021-21214
2021-04-26 17:15:00
CVE-2021-21201
2021-04-26 17:15:00
mscve
mscve
Chromium: CVE-2021-21207 Use after free in IndexedDB
2021-04-15 18:40:04
Chromium: CVE-2021-21202 Use after free in extensions
2021-04-15 18:40:01
Chromium: CVE-2021-21204 Use after free in Blink
2021-04-15 18:40:02
redhatcve
redhatcve
CVE-2021-21209
2022-05-20 22:41:04
CVE-2021-21204
2022-05-21 00:16:08
CVE-2021-21216
2022-05-20 22:31:11
cnvd
cnvd
Google Chrome is vulnerable to information disclosure (CNVD-2021-47672)
2021-06-19 00:00:00
gentoo
gentoo
Chromium, Google Chrome: Multiple vulnerabilities
2021-04-30 00:00:00

9.6 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

8.3 High

AI Score

Confidence

High

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.492 Medium

EPSS

Percentile

97.5%

JSON
Related for KLA12144
nessus11freebsd2kaspersky1chrome1osv1debian1openvas6archlinux2fedora3suse3alpinelinux19veracode19ubuntucve19debiancve19prion19cve19mscve19redhatcve3cnvd1gentoo1