Edge Chromium Security Vulnerabilities and Issues — Edge Chromium CVE List

Insufficient data validation in File System API in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to bypass filesystem restrictions via a crafted HTML page.

6.5CVSS6.5AI score0.02848EPSS

CVE•added 2021/02/09 2:15 p.m.•199 views

CVE-2021-21135

Inappropriate implementation in Performance API in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to leak cross-origin data via a crafted HTML page.

6.5CVSS6.4AI score0.24927EPSS

CVE•added 2021/02/09 2:15 p.m.•194 views

CVE-2021-21126

Insufficient policy enforcement in extensions in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to bypass site isolation via a crafted Chrome Extension.

6.5CVSS6.6AI score0.03236EPSS

CVE•added 2021/02/09 2:15 p.m.•189 views

CVE-2021-21129

Insufficient policy enforcement in File System API in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to bypass filesystem restrictions via a crafted HTML page.

6.5CVSS6.5AI score0.01988EPSS

CVE•added 2021/02/09 2:15 p.m.•186 views

CVE-2021-21137

Inappropriate implementation in DevTools in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to obtain potentially sensitive information from disk via a crafted HTML page.

6.5CVSS6.4AI score0.01367EPSS

CVE•added 2023/11/03 1:15 a.m.•186 views

CVE-2023-36022

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

6.6CVSS7AI score0.00434EPSS

CVE•added 2021/02/09 2:15 p.m.•181 views

CVE-2021-21130

Insufficient policy enforcement in File System API in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to bypass filesystem restrictions via a crafted HTML page.

6.5CVSS6.5AI score0.01988EPSS

CVE•added 2021/02/09 2:15 p.m.•181 views

CVE-2021-21131

Insufficient policy enforcement in File System API in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to bypass filesystem restrictions via a crafted HTML page.

6.5CVSS6.5AI score0.00529EPSS

CVE•added 2023/07/21 6:15 p.m.•181 views

CVE-2023-38187

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

6.5CVSS6.6AI score0.00992EPSS

CVE•added 2023/11/16 8:15 p.m.•173 views

CVE-2023-36008

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

6.6CVSS6.8AI score0.00987EPSS

CVE•added 2021/09/03 8:15 p.m.•172 views

CVE-2021-30621

Chromium: CVE-2021-30621 UI Spoofing in Autofill

6.5CVSS7.2AI score0.01693EPSS

CVE•added 2021/02/09 2:15 p.m.•171 views

CVE-2021-21133

Insufficient policy enforcement in Downloads in Google Chrome prior to 88.0.4324.96 allowed an attacker who convinced a user to download files to bypass navigation restrictions via a crafted HTML page.

6.5CVSS6.6AI score0.03992EPSS

CVE•added 2023/04/27 7:15 p.m.•169 views

CVE-2023-28286

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

6.1CVSS6.3AI score0.00122EPSS

CVE•added 2021/09/03 8:15 p.m.•168 views

CVE-2021-30615

Chromium: CVE-2021-30615 Cross-origin data leak in Navigation

6.5CVSS7.1AI score0.0358EPSS

CVE•added 2021/02/09 2:15 p.m.•167 views

CVE-2021-21139

Inappropriate implementation in iframe sandbox in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page.

6.5CVSS6.7AI score0.01529EPSS

CVE•added 2021/09/03 8:15 p.m.•167 views

CVE-2021-30619

Chromium: CVE-2021-30619 UI Spoofing in Autofill

6.5CVSS7.2AI score0.01693EPSS

CVE•added 2023/01/24 12:15 a.m.•165 views

CVE-2023-21719

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

6.5CVSS6.2AI score0.01975EPSS

CVE•added 2023/06/07 6:15 p.m.•164 views

CVE-2023-29345

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

6.1CVSS6.2AI score0.00346EPSS

CVE•added 2021/02/09 2:15 p.m.•158 views

CVE-2021-21136

Insufficient policy enforcement in WebView in Google Chrome on Android prior to 88.0.4324.96 allowed a remote attacker to leak cross-origin data via a crafted HTML page.

6.5CVSS6.3AI score0.08894EPSS

CVE•added 2021/02/09 2:15 p.m.•157 views

CVE-2021-21134

Incorrect security UI in Page Info in Google Chrome on iOS prior to 88.0.4324.96 allowed a remote attacker to spoof security UI via a crafted HTML page.

6.5CVSS6.4AI score0.15325EPSS

CVE•added 2024/01/30 6:15 p.m.•155 views

CVE-2024-21388

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

6.5CVSS6.3AI score0.1936EPSS

CVE•added 2023/09/15 10:15 p.m.•151 views

CVE-2023-36727

Microsoft Edge (Chromium-based) Spoofing Vulnerability

6.1CVSS6.3AI score0.00602EPSS

CVE•added 2024/01/11 9:15 p.m.•148 views

CVE-2024-20675

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

6.3CVSS6AI score0.00134EPSS

CVE•added 2024/04/18 7:15 p.m.•141 views

CVE-2024-29987

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

6.5CVSS6.1AI score0.00156EPSS

CVE•added 2023/04/11 9:15 p.m.•140 views

CVE-2023-24935

Microsoft Edge (Chromium-based) Spoofing Vulnerability

6.1CVSS6.3AI score0.00165EPSS

CVE•added 2025/03/23 5:15 p.m.•119 views

CVE-2025-29806

No cwe for this issue in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

6.5CVSS7.1AI score0.00148EPSS

CVE•added 2023/06/14 12:15 a.m.•111 views

CVE-2023-33145

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

6.5CVSS6.6AI score0.07104EPSS

CVE•added 2025/07/11 5:15 p.m.•110 views

CVE-2025-47963

No cwe for this issue in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.

6.5CVSS6.7AI score0.00067EPSS

CVE•added 2025/01/17 8:15 p.m.•104 views

CVE-2025-21185

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

6.5CVSS6.9AI score0.0015EPSS

CVE•added 2024/08/23 11:15 p.m.•93 views

CVE-2024-38207

Microsoft Edge (HTML-based) Memory Corruption Vulnerability

6.3CVSS6.2AI score0.00254EPSS

CVE•added 2025/05/02 2:15 a.m.•93 views

CVE-2025-29825

User interface (ui) misrepresentation of critical information in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.

6.5CVSS6.2AI score0.00099EPSS

CVE•added 2023/07/14 6:15 p.m.•85 views

CVE-2023-36888

Microsoft Edge for Android (Chromium-based) Tampering Vulnerability

6.3CVSS6.3AI score0.00163EPSS

CVE•added 2022/12/13 7:15 p.m.•84 views

CVE-2022-41115

Microsoft Edge (Chromium-based) Update Elevation of Privilege Vulnerability

6.6CVSS6.8AI score0.00604EPSS

CVE•added 2022/01/11 9:15 p.m.•83 views

CVE-2022-21954

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability