|
195221
|
8.1 |
HIGH
Network
|
google
debian
fedoraproject
|
chrome
debian_linux
fedora
|
Insufficient policy enforcement in navigation in Google Chrome on iOS prior to 90.0.4430.72 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page.
|
NVD-CWE-noinfo
|
CVE-2021-21205
|
2024-11-21 14:47 |
2021-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195222
|
8.8 |
HIGH
Network
|
google
debian
fedoraproject
|
chrome
debian_linux
fedora
|
Use after free in Blink in Google Chrome on OS X prior to 90.0.4430.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
CWE-416
Use After Free
|
CVE-2021-21204
|
2024-11-21 14:47 |
2021-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195223
|
8.8 |
HIGH
Network
|
google
debian
fedoraproject
|
chrome
debian_linux
fedora
|
Use after free in Blink in Google Chrome prior to 90.0.4430.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
CWE-416
Use After Free
|
CVE-2021-21203
|
2024-11-21 14:47 |
2021-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195224
|
8.6 |
HIGH
Local
|
google
debian
fedoraproject
|
chrome
debian_linux
fedora
|
Use after free in extensions in Google Chrome prior to 90.0.4430.72 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox escape via a crafted Chr…
|
CWE-416
Use After Free
|
CVE-2021-21202
|
2024-11-21 14:47 |
2021-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195225
|
9.6 |
CRITICAL
Network
|
google
debian
fedoraproject
|
chrome
debian_linux
fedora
|
Use after free in permissions in Google Chrome prior to 90.0.4430.72 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.
|
CWE-416
Use After Free
|
CVE-2021-21201
|
2024-11-21 14:47 |
2021-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195226
|
5.3 |
MEDIUM
Network
|
nec
|
aterm_wg2600hs_firmware
aterm_wx3000hp_firmware
|
Improper access control vulnerability in NEC Aterm WG2600HS firmware Ver1.5.1 and earlier, and Aterm WX3000HP firmware Ver1.1.2 and earlier allows a device connected to the LAN side to be accessed fr…
|
NVD-CWE-Other
|
CVE-2021-20712
|
2024-11-21 14:47 |
2021-04-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195227
|
9.8 |
CRITICAL
Network
|
nec
|
aterm_wg2600hs_firmware
|
Aterm WG2600HS firmware Ver1.5.1 and earlier allows an attacker to execute arbitrary OS commands via unspecified vectors.
|
CWE-78
OS Command
|
CVE-2021-20711
|
2024-11-21 14:47 |
2021-04-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195228
|
6.1 |
MEDIUM
Network
|
aterm
|
wg2600hs_firmware
|
Cross-site scripting vulnerability in Aterm WG2600HS firmware Ver1.5.1 and earlier allows remote attackers to inject an arbitrary script via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2021-20710
|
2024-11-21 14:47 |
2021-04-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195229
|
7.2 |
HIGH
Network
|
nec
|
aterm_wf1200cr_firmware
aterm_wg1200cr_firmware
aterm_wg2600hs_firmware
|
Improper validation of integrity check value vulnerability in NEC Aterm WF1200CR firmware Ver1.3.2 and earlier, Aterm WG1200CR firmware Ver1.3.3 and earlier, and Aterm WG2600HS firmware Ver1.5.1 and …
|
CWE-354
Improper Validation of Integrity Check Value
|
CVE-2021-20709
|
2024-11-21 14:47 |
2021-04-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195230
|
7.2 |
HIGH
Network
|
nec
|
aterm_wf1200cr_firmware
aterm_wg1200cr_firmware
aterm_wg2600hs_firmware
|
NEC Aterm devices (Aterm WF1200CR firmware Ver1.3.2 and earlier, Aterm WG1200CR firmware Ver1.3.3 and earlier, and Aterm WG2600HS firmware Ver1.5.1 and earlier) allow authenticated attackers to execu…
|
CWE-78
OS Command
|
CVE-2021-20708
|
2024-11-21 14:47 |
2021-04-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
