|
196911
|
6.5 |
MEDIUM
Network
|
google
debian
fedoraproject
|
chrome
debian_linux
fedora
|
Inappropriate implementation in storage in Google Chrome prior to 90.0.4430.72 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
|
CWE-346
Origin Validation Error
|
CVE-2021-21209
|
2024-11-21 14:47 |
2021-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196912
|
6.5 |
MEDIUM
Network
|
google
debian
fedoraproject
|
chrome
debian_linux
fedora
|
Insufficient data validation in QR scanner in Google Chrome on iOS prior to 90.0.4430.72 allowed an attacker displaying a QR code to perform domain spoofing via a crafted QR code.
|
CWE-20
Improper Input Validation
|
CVE-2021-21208
|
2024-11-21 14:47 |
2021-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196913
|
8.6 |
HIGH
Local
|
google
debian
fedoraproject
|
chrome
debian_linux
fedora
|
Use after free in IndexedDB in Google Chrome prior to 90.0.4430.72 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox escape via a crafted Chro…
|
CWE-416
Use After Free
|
CVE-2021-21207
|
2024-11-21 14:47 |
2021-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196914
|
8.8 |
HIGH
Network
|
google
fedoraproject
|
chrome
fedora
|
Use after free in Blink in Google Chrome prior to 89.0.4389.128 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
CWE-416
Use After Free
|
CVE-2021-21206
|
2024-11-21 14:47 |
2021-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196915
|
8.1 |
HIGH
Network
|
google
debian
fedoraproject
|
chrome
debian_linux
fedora
|
Insufficient policy enforcement in navigation in Google Chrome on iOS prior to 90.0.4430.72 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page.
|
NVD-CWE-noinfo
|
CVE-2021-21205
|
2024-11-21 14:47 |
2021-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196916
|
8.8 |
HIGH
Network
|
google
debian
fedoraproject
|
chrome
debian_linux
fedora
|
Use after free in Blink in Google Chrome on OS X prior to 90.0.4430.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
CWE-416
Use After Free
|
CVE-2021-21204
|
2024-11-21 14:47 |
2021-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196917
|
8.8 |
HIGH
Network
|
google
debian
fedoraproject
|
chrome
debian_linux
fedora
|
Use after free in Blink in Google Chrome prior to 90.0.4430.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
CWE-416
Use After Free
|
CVE-2021-21203
|
2024-11-21 14:47 |
2021-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196918
|
8.6 |
HIGH
Local
|
google
debian
fedoraproject
|
chrome
debian_linux
fedora
|
Use after free in extensions in Google Chrome prior to 90.0.4430.72 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox escape via a crafted Chr…
|
CWE-416
Use After Free
|
CVE-2021-21202
|
2024-11-21 14:47 |
2021-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196919
|
9.6 |
CRITICAL
Network
|
google
debian
fedoraproject
|
chrome
debian_linux
fedora
|
Use after free in permissions in Google Chrome prior to 90.0.4430.72 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.
|
CWE-416
Use After Free
|
CVE-2021-21201
|
2024-11-21 14:47 |
2021-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196920
|
5.3 |
MEDIUM
Network
|
nec
|
aterm_wg2600hs_firmware
aterm_wx3000hp_firmware
|
Improper access control vulnerability in NEC Aterm WG2600HS firmware Ver1.5.1 and earlier, and Aterm WX3000HP firmware Ver1.1.2 and earlier allows a device connected to the LAN side to be accessed fr…
|
NVD-CWE-Other
|
CVE-2021-20712
|
2024-11-21 14:47 |
2021-04-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
