CVE-2021-21192
- EPSS 1.48%
- Veröffentlicht 16.03.2021 15:15:13
- Zuletzt bearbeitet 21.11.2024 05:47:44
Heap buffer overflow in tab groups in Google Chrome prior to 89.0.4389.90 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2021-21193
- EPSS 9.87%
- Veröffentlicht 16.03.2021 15:15:13
- Zuletzt bearbeitet 24.10.2025 21:00:22
Use after free in Blink in Google Chrome prior to 89.0.4389.90 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2021-21191
- EPSS 1.37%
- Veröffentlicht 16.03.2021 15:15:12
- Zuletzt bearbeitet 21.11.2024 05:47:44
Use after free in WebRTC in Google Chrome prior to 89.0.4389.90 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2021-22191
- EPSS 3.64%
- Veröffentlicht 15.03.2021 18:15:17
- Zuletzt bearbeitet 21.11.2024 05:49:40
Improper URL handling in Wireshark 3.4.0 to 3.4.3 and 3.2.0 to 3.2.11 could allow remote code execution via via packet injection or crafted capture file.
CVE-2021-28374
- EPSS 1.28%
- Veröffentlicht 15.03.2021 05:15:12
- Zuletzt bearbeitet 21.11.2024 05:59:36
The Debian courier-authlib package before 0.71.1-2 for Courier Authentication Library creates a /run/courier/authdaemon directory with weak permissions, allowing an attacker to read user information. This may include a cleartext password in some conf...
CVE-2021-21366
- EPSS 1.33%
- Veröffentlicht 12.03.2021 17:15:12
- Zuletzt bearbeitet 21.11.2024 05:48:12
xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) DOMParser and XMLSerializer module. xmldom versions 0.4.0 and older do not correctly preserve system identifiers, FPIs or namespaces when repeatedly parsing and serializing malicio...
CVE-2020-36281
- EPSS 2.87%
- Veröffentlicht 12.03.2021 01:15:12
- Zuletzt bearbeitet 21.11.2024 05:29:11
Leptonica before 1.80.0 allows a heap-based buffer over-read in pixFewColorsOctcubeQuantMixed in colorquant1.c.
CVE-2020-36278
- EPSS 2.87%
- Veröffentlicht 12.03.2021 00:15:12
- Zuletzt bearbeitet 21.11.2024 05:29:11
Leptonica before 1.80.0 allows a heap-based buffer over-read in findNextBorderPixel in ccbord.c.
CVE-2020-36279
- EPSS 2.57%
- Veröffentlicht 12.03.2021 00:15:12
- Zuletzt bearbeitet 21.11.2024 05:29:11
Leptonica before 1.80.0 allows a heap-based buffer over-read in rasteropGeneralLow, related to adaptmap_reg.c and adaptmap.c.
CVE-2021-28153
- EPSS 2.62%
- Veröffentlicht 11.03.2021 22:15:12
- Zuletzt bearbeitet 21.11.2024 05:59:11
An issue was discovered in GNOME GLib before 2.66.8. When g_file_replace() is used with G_FILE_CREATE_REPLACE_DESTINATION to replace a path that is a dangling symlink, it incorrectly also creates the target of the symlink as an empty file, which coul...