CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

100 matches found

UbuntuCve•added 2021/10/08 10:15 p.m.•18 views

CVE-2021-37967

Inappropriate implementation in Background Fetch API in Google Chrome prior to 94.0.4606.54 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page...

4.3CVSS6.7AI score0.00816EPSS

Exploits0References1

Debian CVE•added 2021/10/08 9:30 p.m.•27 views

CVE-2021-37968

Inappropriate implementation in Background Fetch API in Google Chrome prior to 94.0.4606.54 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

4.3CVSS5.8AI score0.00516EPSS

Exploits0

CVE•added 2021/10/08 9:30 p.m.•176 views

CVE-2021-37968

The CVE-2021-37968 entry describes an insecure implementation in the Background Fetch API in Google Chrome, leading to potential cross-origin data leakage via a crafted HTML page. Affected software: Google Chrome (Background Fetch API); root cause: improper handling in the API implementation; imp...

4.3CVSS4.9AI score0.00516EPSS

Exploits0References5Affected Software1

AlpineLinux•added 2021/10/08 9:30 p.m.•30 views

CVE-2021-37968

Inappropriate implementation in Background Fetch API in Google Chrome prior to 94.0.4606.54 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

4.3CVSS5.4AI score0.00516EPSS

Exploits0

CVE•added 2021/10/08 9:30 p.m.•173 views

CVE-2021-37967

CVE-2021-37967 describes an insecure implementation in the Background Fetch API in Google Chrome/Chromium, where a remote attacker who had already compromised the renderer process could leak cross-origin data via a crafted HTML page. The issue affects Chrome/Chromium prior to version 94.0.4606.54...

4.3CVSS4.9AI score0.00816EPSS

Exploits0References5Affected Software1

Debian CVE•added 2021/10/08 9:30 p.m.•21 views

CVE-2021-37967

4.3CVSS5.8AI score0.00816EPSS

Exploits0

Cvelist•added 2021/10/08 9:30 p.m.•13 views

CVE-2021-37967

5.5AI score0.00816EPSS

Exploits0References5

Debian CVE•added 2021/10/08 9:30 p.m.•27 views

CVE-2021-37965

Inappropriate implementation in Background Fetch API in Google Chrome prior to 94.0.4606.54 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

4.3CVSS5.8AI score0.00398EPSS

Exploits0

Cvelist•added 2021/10/08 9:30 p.m.•16 views

CVE-2021-37965

Inappropriate implementation in Background Fetch API in Google Chrome prior to 94.0.4606.54 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

5.5AI score0.00398EPSS

Exploits0References5

CVE•added 2021/10/08 9:30 p.m.•145 views

CVE-2021-37965

CVE-2021-37965 affects Google Chrome/Chromium’s Background Fetch API. The vulnerability stems from an inappropriate implementation, enabling a remote attacker to leak cross-origin data via a crafted HTML page. The NVD records a CVSS v3.1 base score of 4.3 (Medium) with network attack vector, no p...

4.3CVSS4.9AI score0.00398EPSS

Exploits0References5Affected Software1

Veracode•added 2021/10/07 10:16 a.m.•17 views

Remote Code Execution (RCE)

chromium is vulnerable to remote code execution RCE. The vulnerability exists due to the inappropriate implementation in background fetch API...

4.3CVSS4.2AI score0.00398EPSS

Exploits0References8Affected Software2

Tenable Nessus•added 2021/10/01 12:0 a.m.•47 views

FreeBSD : chromium -- multiple vulnerabilities (3551e106-1b17-11ec-a8a7-704d7b472482)

Chrome Releases reports : This update contains 19 security fixes, including : - 1243117 High CVE-2021-37956: Use after free in Offline use. Reported by Huyna at Viettel Cyber Security on 2021-08-24 - 1242269 High CVE-2021-37957: Use after free in WebGPU. Reported by Looben Yang on 2021-08-23 -...

8.8CVSS7AI score0.02428EPSS

Exploits3References18

Microsoft CVE•added 2021/09/24 3:10 p.m.•30 views

Chromium: CVE-2021-37968 Inappropriate implementation in Background Fetch API

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

4.3CVSS6.3AI score0.00516EPSS

Exploits0

Microsoft CVE•added 2021/09/24 3:9 p.m.•23 views

Chromium: CVE-2021-37967 Inappropriate implementation in Background Fetch API

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

4.3CVSS6.3AI score0.00816EPSS

Exploits0

Microsoft CVE•added 2021/09/24 3:9 p.m.•34 views

Chromium: CVE-2021-37965 Inappropriate implementation in Background Fetch API

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

4.3CVSS6.3AI score0.00398EPSS

Exploits0

Kaspersky•added 2021/09/24 12:0 a.m.•41 views

KLA12299 Multiple vulnerabilities in Microsoft Browser

Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, obtain sensitive information, spoof user interface. Below is a complete list of vulnerabilities: 1. A use after free vulnerability in Tab...

9.6CVSS9.7AI score0.14782EPSS

Exploits3References20

CNVD•added 2021/09/22 12:0 a.m.•22 views

Google Chrome Background Fetch API security bypass vulnerability

Google Chrome is a web browser from Google, Inc. A security bypass vulnerability exists in the Google Chrome Background Fetch API. An attacker could exploit this vulnerability to bypass security restrictions...

4.3CVSS3.1AI score0.00398EPSS

Exploits0References1

CNVD•added 2021/09/22 12:0 a.m.•18 views

Google Chrome Background Fetch API security bypass vulnerability (CNVD-2021-73419)

4.3CVSS3.1AI score0.00816EPSS

Exploits0References1