Lucene search
K

155 matches found

osv
osv
added 2021/10/08 10:15 p.m.2 views

UBUNTU-CVE-2021-37967

Inappropriate implementation in Background Fetch API in Google Chrome prior to 94.0.4606.54 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page...

4.3CVSS7.3AI score0.00739EPSS
Exploits0References2
osv
osv
added 2021/10/08 10:15 p.m.2 views

UBUNTU-CVE-2021-37968

Inappropriate implementation in Background Fetch API in Google Chrome prior to 94.0.4606.54 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

4.3CVSS6.6AI score0.01188EPSS
Exploits0References2
prion
prion
added 2021/10/08 10:15 p.m.16 views

Design/Logic Flaw

Inappropriate implementation in Background Fetch API in Google Chrome prior to 94.0.4606.54 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page...

4.3CVSS4.9AI score0.00739EPSS
Exploits0References5Affected Software3
ubuntucve
ubuntucve
added 2021/10/08 10:15 p.m.29 views

CVE-2021-37967

Inappropriate implementation in Background Fetch API in Google Chrome prior to 94.0.4606.54 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page...

4.3CVSS6.7AI score0.00739EPSS
Exploits0References1
prion
prion
added 2021/10/08 10:15 p.m.16 views

Design/Logic Flaw

Inappropriate implementation in Background Fetch API in Google Chrome prior to 94.0.4606.54 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

4.3CVSS4.8AI score0.01125EPSS
Exploits0References5Affected Software3
ubuntucve
ubuntucve
added 2021/10/08 10:15 p.m.35 views

CVE-2021-37965

Inappropriate implementation in Background Fetch API in Google Chrome prior to 94.0.4606.54 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

4.3CVSS6.3AI score0.01125EPSS
Exploits0References1
osv
osv
added 2021/10/08 10:15 p.m.3 views

UBUNTU-CVE-2021-37965

Inappropriate implementation in Background Fetch API in Google Chrome prior to 94.0.4606.54 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

4.3CVSS7.3AI score0.01125EPSS
Exploits0References2
cve
cve
added 2021/10/08 9:30 p.m.180 views

CVE-2021-37968

The CVE-2021-37968 entry describes an insecure implementation in the Background Fetch API in Google Chrome, leading to potential cross-origin data leakage via a crafted HTML page. Affected software: Google Chrome (Background Fetch API); root cause: improper handling in the API implementation; imp...

4.3CVSS4.9AI score0.01188EPSS
Exploits0References5Affected Software1
alpinelinux
alpinelinux
added 2021/10/08 9:30 p.m.31 views

CVE-2021-37968

Inappropriate implementation in Background Fetch API in Google Chrome prior to 94.0.4606.54 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

4.3CVSS5.4AI score0.01188EPSS
Exploits0
debiancve
debiancve
added 2021/10/08 9:30 p.m.28 views

CVE-2021-37968

Inappropriate implementation in Background Fetch API in Google Chrome prior to 94.0.4606.54 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

4.3CVSS5.8AI score0.01188EPSS
Exploits0
cve
cve
added 2021/10/08 9:30 p.m.180 views

CVE-2021-37967

CVE-2021-37967 describes an insecure implementation in the Background Fetch API in Google Chrome/Chromium, where a remote attacker who had already compromised the renderer process could leak cross-origin data via a crafted HTML page. The issue affects Chrome/Chromium prior to version 94.0.4606.54...

4.3CVSS4.9AI score0.00739EPSS
Exploits0References5Affected Software1
cvelist
cvelist
added 2021/10/08 9:30 p.m.35 views

CVE-2021-37967

Inappropriate implementation in Background Fetch API in Google Chrome prior to 94.0.4606.54 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page...

5.5AI score0.00739EPSS
Exploits0References5
debiancve
debiancve
added 2021/10/08 9:30 p.m.21 views

CVE-2021-37967

Inappropriate implementation in Background Fetch API in Google Chrome prior to 94.0.4606.54 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page...

4.3CVSS5.8AI score0.00739EPSS
Exploits0
cvelist
cvelist
added 2021/10/08 9:30 p.m.39 views

CVE-2021-37965

Inappropriate implementation in Background Fetch API in Google Chrome prior to 94.0.4606.54 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

5.5AI score0.01125EPSS
Exploits0References5
cve
cve
added 2021/10/08 9:30 p.m.152 views

CVE-2021-37965

CVE-2021-37965 affects Google Chrome/Chromium’s Background Fetch API. The vulnerability stems from an inappropriate implementation, enabling a remote attacker to leak cross-origin data via a crafted HTML page. The NVD records a CVSS v3.1 base score of 4.3 (Medium) with network attack vector, no p...

4.3CVSS4.9AI score0.01125EPSS
Exploits0References5Affected Software1
debiancve
debiancve
added 2021/10/08 9:30 p.m.29 views

CVE-2021-37965

Inappropriate implementation in Background Fetch API in Google Chrome prior to 94.0.4606.54 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

4.3CVSS5.8AI score0.01125EPSS
Exploits0
veracode
veracode
added 2021/10/07 10:16 a.m.17 views

Remote Code Execution (RCE)

chromium is vulnerable to remote code execution RCE. The vulnerability exists due to the inappropriate implementation in background fetch API...

4.3CVSS4.2AI score0.00739EPSS
Exploits0References8Affected Software3
veracode
veracode
added 2021/10/07 10:16 a.m.18 views

Remote Code Execution (RCE)

chromium is vulnerable to remote code execution RCE. The vulnerability exists due to the inappropriate implementation in background fetch API...

4.3CVSS4.2AI score0.01125EPSS
Exploits0References8Affected Software2
nessus
nessus
added 2021/10/01 12:0 a.m.49 views

FreeBSD : chromium -- multiple vulnerabilities (3551e106-1b17-11ec-a8a7-704d7b472482)

Chrome Releases reports : This update contains 19 security fixes, including : - 1243117 High CVE-2021-37956: Use after free in Offline use. Reported by Huyna at Viettel Cyber Security on 2021-08-24 - 1242269 High CVE-2021-37957: Use after free in WebGPU. Reported by Looben Yang on 2021-08-23 -...

8.8CVSS7AI score0.01662EPSS
Exploits3References18
mscve
mscve
added 2021/09/24 3:10 p.m.30 views

Chromium: CVE-2021-37968 Inappropriate implementation in Background Fetch API

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

4.3CVSS6.3AI score0.01188EPSS
Exploits0
Rows per page
Query Builder