CVE-2023-21185

In multiple functions of WifiNetworkFactory.java, there is a missing permission check. This could lead to local escalation of privilege from the guest user with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android I...

CVE-2025-21185

Microsoft Edge Chromium-based Elevation of Privilege Vulnerability...

CVE-2025-21185

creationtimestamp| type| source ---|---|--- 2025-01-17 19:23:18+00:00| seen| https://infosec.exchange/users/cve/statuses/113845324887179561 2025-01-17 19:32:11+00:00| seen| https://infosec.exchange/users/screaminggoat/statuses/113845359780799137 2025-01-17 19:56:47+00:00| seen|...

CVE-2025-21185 Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

...

CVE-2025-21185

Microsoft Edge (Chromium-based) has a CVE-2025-21185 Elevation of Privilege vulnerability (CVSS v3.1 base score 6.5; vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N). Affects Edge components as described in the entry; impact is limited to confidentiality exposure (C:H) with no integrity or a...

CVE-2024-21185

creationtimestamp| type| source ---|---|--- 2024-07-17 02:20:08+00:00| seen| https://t.me/cvedetector/1038...

Oracle MySQL Server 8.0.38, 8.4.1, 9.0.0 Security Update (cpujul2024) - Linux

Oracle MySQL Server is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2024-21185

...

CVE-2024-21185

...

CVE-2024-21185

Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 8.0.38, 8.4.1 and 9.0.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks...

CVE-2023-21185

creationtimestamp| type| source ---|---|--- 2023-06-28 22:13:12+00:00| seen| https://t.me/cibsecurity/65642...

CVE-2023-21185

In multiple functions of WifiNetworkFactory.java, there is a missing permission check. This could lead to local escalation of privilege from the guest user with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android I...

CVE-2023-21185

CVE-2023-21185 affects Android 13 devices, where multiple functions in WifiNetworkFactory.java lack a required permission check. This creates a path for local privilege escalation from a guest user, with no additional execution privileges and no user interaction required to exploit. Public source...

CVE-2021-21185

Insufficient policy enforcement in extensions in Google Chrome prior to 89.0.4389.72 allowed an attacker who convinced a user to install a malicious extension to obtain sensitive information via a crafted Chrome Extension...

openSUSE: Security Advisory for chromium (openSUSE-SU-2021:0392-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Microsoft Edge (Chromium-Based) Multiple Vulnerabilities (Mar 2021)

This host is missing an important security update according to Microsoft Edge Chromium-Based updates. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

CVE-2021-21185

Insufficient policy enforcement in extensions in Google Chrome prior to 89.0.4389.72 allowed an attacker who convinced a user to install a malicious extension to obtain sensitive information via a crafted Chrome Extension...

CVE-2021-21185

CVE-2021-21185 affects the Chromium browser (Extensions component) with a policy enforcement issue that could allow a user-targeted attacker who lures a user into installing a malicious extension to exfiltrate sensitive information. The Debian advisories list this CVE among multiple Chromium fixe...

Chromium CVE-2021-21185: Insufficient policy enforcement in extensions

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

Google Chrome < 89.0.4389.72 Multiple Vulnerabilities

The version of Google Chrome installed on the remote Windows host is prior to 89.0.4389.72. It is, therefore, affected by multiple vulnerabilities as referenced in the 202103stable-channel-update-for-desktop advisory. - Uninitialized data in PDFium in Google Chrome prior to 89.0.4389.72 allowed a...