CVE-2021-38022

Inappropriate implementation in WebAuthentication in Google Chrome prior to 96.0.4664.45 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

CVE-2021-38022

Inappropriate implementation in WebAuthentication in Google Chrome prior to 96.0.4664.45 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

CVE-2021-38022

CVE-2021-38022 affects Google Chrome’s WebAuthentication component in the Chromium engine, with an inappropriate implementation before 96.0.4664.45 that could allow a remote attacker to leak cross-origin data via a crafted HTML page. The issue is described in multiple security entries and advisor...

CVE-2021-38022

Inappropriate implementation in WebAuthentication in Google Chrome prior to 96.0.4664.45 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

Insecure Implementation In WebAuthentication

qt5-qtwebengine has inappropriate implementation in WebAuthentication...

Chromium: CVE-2021-38022 Inappropriate implementation in WebAuthentication

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

Google Chrome WebAuthentication Misimplementation Vulnerability

Chrome is a simple and efficiently designed web browsing tool developed by Google. A WebAuthentication mal-implementation vulnerability exists in versions of Google Chrome prior to 96.0.4664.45. An attacker could exploit this vulnerability to leak cross-origin data via a crafted HTML page...

chromium -- multiple vulnerabilities

Chrome Releases reports: This release contains 25 security fixes, including: 1263620 High CVE-2021-38008: Use after free in media. Reported by Marcin Towalski of Cisco Talos on 2021-10-26 1260649 High CVE-2021-38009: Inappropriate implementation in cache. Reported by Luan Herrera @lbherrera on...

Google Chrome 安全特征问题漏洞

Chrome is a simple and efficiently designed web browsing tool developed by Google. A WebAuthentication mal-implementation vulnerability exists in versions of Google Chrome prior to 96.0.4664.45. An attacker could exploit this vulnerability to leak cross-origin data via a crafted HTML page...

CVE-2021-30528

Use after free in WebAuthentication in Google Chrome on Android prior to 91.0.4472.77 allowed a remote attacker who had compromised the renderer process of a user who had saved a credit card in their Google account to potentially exploit heap corruption via a crafted HTML page...

CVE-2021-30528

Use after free in WebAuthentication in Google Chrome on Android prior to 91.0.4472.77 allowed a remote attacker who had compromised the renderer process of a user who had saved a credit card in their Google account to potentially exploit heap corruption via a crafted HTML page...

CVE-2021-30528

Use after free in WebAuthentication in Google Chrome on Android prior to 91.0.4472.77 allowed a remote attacker who had compromised the renderer process of a user who had saved a credit card in their Google account to potentially exploit heap corruption via a crafted HTML page...

Design/Logic Flaw

Use after free in WebAuthentication in Google Chrome on Android prior to 91.0.4472.77 allowed a remote attacker who had compromised the renderer process of a user who had saved a credit card in their Google account to potentially exploit heap corruption via a crafted HTML page...

CVE-2021-30528

CVE-2021-30528 is a use-after-free vulnerability in the Chromium WebAuthentication component (Chromium/Google Chrome) on Android, before version 91.0.4472.77. The issue can allow a remote attacker who has compromised the renderer process of a user who saved a credit card in their Google account t...

CVE-2021-30528

Use after free in WebAuthentication in Google Chrome on Android prior to 91.0.4472.77 allowed a remote attacker who had compromised the renderer process of a user who had saved a credit card in their Google account to potentially exploit heap corruption via a crafted HTML page...

CVE-2021-30528

Use after free in WebAuthentication in Google Chrome on Android prior to 91.0.4472.77 allowed a remote attacker who had compromised the renderer process of a user who had saved a credit card in their Google account to potentially exploit heap corruption via a crafted HTML page...

Arbitrary Code Execution

chromium is vulnerable to arbitrary code execution. A use-after-free in WebAuthentication allows an attacker to execute arbitrary code on the host OS by tricking a user into visiting a malicious web page...

Chromium: CVE-2021-30528 Use after free in WebAuthentication

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

Google Chrome post-release reuse vulnerability (CNVD-2021-41140)

Chrome is a simple and efficiently designed web browsing tool developed by Google that is characterized by its simplicity and speed. A post-release reuse vulnerability in WebAuthentication in versions prior to Google Chrome 91.0.4472.77 can be exploited by a remote attacker to corrupt the rendere...

RHEL 6 : chromium-browser (RHSA-2020:2544)

The remote Redhat Enterprise Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:2544 advisory. Chromium is an open-source web browser, powered by WebKit Blink. This update upgrades Chromium to version 83.0.4103.97. Security Fixes:...