49 matches found
CVE-2021-21157
Use after free in Web Sockets in Google Chrome on Linux prior to 88.0.4324.182 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2021-33741
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
CVE-2021-30617
Chromium: CVE-2021-30617 Policy bypass in Blink
CVE-2021-30624
Chromium: CVE-2021-30624 Use after free in Autofill
CVE-2021-21132
Inappropriate implementation in DevTools in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to potentially perform a sandbox escape via a crafted Chrome Extension.
CVE-2021-21123
Insufficient data validation in File System API in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to bypass filesystem restrictions via a crafted HTML page.
CVE-2021-21121
Use after free in Omnibox in Google Chrome on Linux prior to 88.0.4324.96 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page.
CVE-2021-21135
Inappropriate implementation in Performance API in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
CVE-2021-21122
Use after free in Blink in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2021-21119
Use after free in Media in Google Chrome prior to 88.0.4324.96 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page.
CVE-2021-21127
Insufficient policy enforcement in extensions in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to bypass content security policy via a crafted Chrome Extension.
CVE-2021-21126
Insufficient policy enforcement in extensions in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to bypass site isolation via a crafted Chrome Extension.
CVE-2021-21118
Insufficient data validation in V8 in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page.
CVE-2021-21120
Use after free in WebSQL in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2021-21128
Heap buffer overflow in Blink in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2021-30612
Chromium: CVE-2021-30612 Use after free in WebRTC
CVE-2021-21129
Insufficient policy enforcement in File System API in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to bypass filesystem restrictions via a crafted HTML page.
CVE-2021-21137
Inappropriate implementation in DevTools in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to obtain potentially sensitive information from disk via a crafted HTML page.
CVE-2021-21130
Insufficient policy enforcement in File System API in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to bypass filesystem restrictions via a crafted HTML page.
CVE-2021-21131
Insufficient policy enforcement in File System API in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to bypass filesystem restrictions via a crafted HTML page.
CVE-2021-30610
Chromium: CVE-2021-30610 Use after free in Extensions API
CVE-2021-30618
Chromium: CVE-2021-30618 Inappropriate implementation in DevTools
CVE-2021-30606
Chromium: CVE-2021-30606 Use after free in Blink
CVE-2021-30613
Chromium: CVE-2021-30613 Use after free in Base internals
CVE-2021-30623
Chromium: CVE-2021-30623 Use after free in Bookmarks
CVE-2021-30620
Chromium: CVE-2021-30620 Insufficient policy enforcement in Blink
CVE-2021-30621
Chromium: CVE-2021-30621 UI Spoofing in Autofill
CVE-2021-21133
Insufficient policy enforcement in Downloads in Google Chrome prior to 88.0.4324.96 allowed an attacker who convinced a user to download files to bypass navigation restrictions via a crafted HTML page.
CVE-2021-30608
Chromium: CVE-2021-30608 Use after free in Web Share
CVE-2021-30615
Chromium: CVE-2021-30615 Cross-origin data leak in Navigation
CVE-2021-21139
Inappropriate implementation in iframe sandbox in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page.
CVE-2021-30614
Chromium: CVE-2021-30614 Heap buffer overflow in TabStrip
CVE-2021-30619
Chromium: CVE-2021-30619 UI Spoofing in Autofill
CVE-2021-30611
Chromium: CVE-2021-30611 Use after free in WebRTC
CVE-2021-30616
Chromium: CVE-2021-30616 Use after free in Media
CVE-2021-30607
Chromium: CVE-2021-30607 Use after free in Permissions
CVE-2021-21125
Insufficient policy enforcement in File System API in Google Chrome on Windows prior to 88.0.4324.96 allowed a remote attacker to bypass filesystem restrictions via a crafted HTML page.
CVE-2021-30609
Chromium: CVE-2021-30609 Use after free in Sign-In
CVE-2021-30622
Chromium: CVE-2021-30622 Use after free in WebApp Installs
CVE-2021-21136
Insufficient policy enforcement in WebView in Google Chrome on Android prior to 88.0.4324.96 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
CVE-2021-21134
Incorrect security UI in Page Info in Google Chrome on iOS prior to 88.0.4324.96 allowed a remote attacker to spoof security UI via a crafted HTML page.
CVE-2021-21124
Potential user after free in Speech Recognizer in Google Chrome on Android prior to 88.0.4324.96 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page.
CVE-2021-24113
Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability
CVE-2021-38669
Microsoft Edge (Chromium-based) Tampering Vulnerability
CVE-2021-36928
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
CVE-2021-36929
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
CVE-2021-36931
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
CVE-2021-42308
Microsoft Edge (Chromium-based) Spoofing Vulnerability
CVE-2021-43221
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability