CVE-2021-25439

CVE-2021-25439: Samsung Members (Android) suffers improper access control that lets untrusted apps trigger arbitrary webpage loading in WebView. Affected: Samsung Members prior to 2.4.85.11 on Android O (8.1) and below, and prior to 3.9.10.11 on Android P (9.0) and above. Root cause: access contr...

SAMSUNG Members 安全漏洞

Samsung Members is a community platform app from Samsung South Korea. An access control error vulnerability exists in Samsung Members. The vulnerability allows untrusted applications to cause local file inclusion in a webview. No detailed vulnerability details are provided at this time...

SAMSUNG Members 安全漏洞

Samsung Members is a community platform app from Samsung South Korea. An access control error vulnerability exists in Samsung Members. The vulnerability allows untrusted applications to load arbitrary web pages in a webview. No details of the vulnerability are provided at this time...

Attention! FluBot Android Banking Malware Spreads Quickly Across Europe

Attention, Android users! A banking malware capable of stealing sensitive information is "spreading rapidly" across Europe, with the U.S. likely to be the next target. According to a new analysis by Proofpoint, the threat actors behind FluBot aka Cabassous have branched out beyond Spain to target...

The vulnerability of the WebView component in Google Chrome web browsers allows a hacker to gain unauthorized access to protected information.

The vulnerability of the WebView component in Google Chrome browsers relates to the lack of protection for transmitted data. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...

DEBIAN-CVE-2021-21136

Insufficient policy enforcement in WebView in Google Chrome on Android prior to 88.0.4324.96 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

CVE-2021-21136

Insufficient policy enforcement in WebView in Google Chrome on Android prior to 88.0.4324.96 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

CVE-2021-21136

Insufficient policy enforcement in WebView in Google Chrome on Android prior to 88.0.4324.96 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

Design/Logic Flaw

Insufficient policy enforcement in WebView in Google Chrome on Android prior to 88.0.4324.96 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

UBUNTU-CVE-2021-21136

Insufficient policy enforcement in WebView in Google Chrome on Android prior to 88.0.4324.96 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

CVE-2021-21136

CVE-2021-21136 affects Chromium WebView on Android (before 88.0.4324.96). Root cause: insufficient policy enforcement in WebView. Impact: remote attacker could leak cross-origin data via a crafted HTML page. Public fixes and references indicate upgrade to Chromium 88.0.4324.96+ (e.g., Chromium pa...

CVE-2021-21136

Insufficient policy enforcement in WebView in Google Chrome on Android prior to 88.0.4324.96 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

CVE-2021-21136

Insufficient policy enforcement in WebView in Google Chrome on Android prior to 88.0.4324.96 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

KLA12178 Multiple vulnerabilities in Opera

Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions, spoof user interface. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in WebRTC can be...

openSUSE Security Update : chromium (openSUSE-2021-173)

This update for chromium fixes the following issues : chromium was updated to 88.0.4324.96 boo1181137 - CVE-2021-21117: Insufficient policy enforcement in Cryptohome - CVE-2021-21118: Insufficient data validation in V8 - CVE-2021-21119: Use after free in Media - CVE-2021-21120: Use after free in...

Security update for chromium (important)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2021:0186-1 Rating: important References: 1181137 Cross-References: CVE-2020-16044 CVE-2021-21117 CVE-2021-21118 CVE-2021-21119 CVE-2021-21120 CVE-2021-21121 CVE-2021-21122 CVE-2021-21123 CVE-2021-21124...

Security update for chromium (important)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2021:0173-1 Rating: important References: 1181137 Cross-References: CVE-2020-16044 CVE-2021-21117 CVE-2021-21118 CVE-2021-21119 CVE-2021-21120 CVE-2021-21121 CVE-2021-21122 CVE-2021-21123 CVE-2021-21124...

openSUSE Security Update : chromium (openSUSE-2021-166)

This update for chromium fixes the following issues : Chromium was updated to 88.0.4324.96 boo1181137 - CVE-2021-21117: Insufficient policy enforcement in Cryptohome - CVE-2021-21118: Insufficient data validation in V8 - CVE-2021-21119: Use after free in Media - CVE-2021-21120: Use after free in...

Security update for chromium (important)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2021:0166-1 Rating: important References: 1181137 Cross-References: CVE-2020-16044 CVE-2021-21117 CVE-2021-21118 CVE-2021-21119 CVE-2021-21120 CVE-2021-21121 CVE-2021-21122 CVE-2021-21123 CVE-2021-21124...

FreeBSD : chromium -- multiple vulnerabilities (4ed0e43c-5cef-11eb-bafd-3065ec8fd3ec)

Chrome Releases reports : This release contains 36 security fixes, including : - 1137179 Critical CVE-2021-21117: Insufficient policy enforcement in Cryptohome. Reported by Rory McNamara on 2020-10-10 - 1161357 High CVE-2021-21118: Insufficient data validation in V8. Reported by Tyler Nighswander...