CVE-2020-35523
- EPSS 1.92%
- Veröffentlicht 09.03.2021 20:15:12
- Zuletzt bearbeitet 21.11.2024 05:27:29
An integer overflow flaw was found in libtiff that exists in the tif_getimage.c file. This flaw allows an attacker to inject and execute arbitrary code when a user opens a crafted TIFF file. The highest threat from this vulnerability is to confidenti...
CVE-2021-20244
- EPSS 1.2%
- Veröffentlicht 09.03.2021 19:15:12
- Zuletzt bearbeitet 21.11.2024 05:46:12
A flaw was found in ImageMagick in MagickCore/visual-effects.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero. The highest threat from this vulnerability ...
CVE-2021-20245
- EPSS 1.21%
- Veröffentlicht 09.03.2021 19:15:12
- Zuletzt bearbeitet 21.11.2024 05:46:12
A flaw was found in ImageMagick in coders/webp.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero. The highest threat from this vulnerability is to system a...
CVE-2021-20246
- EPSS 1.23%
- Veröffentlicht 09.03.2021 19:15:12
- Zuletzt bearbeitet 21.11.2024 05:46:12
A flaw was found in ImageMagick in MagickCore/resample.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero. The highest threat from this vulnerability is to ...
CVE-2021-21295
- EPSS 18.89%
- Veröffentlicht 09.03.2021 19:15:12
- Zuletzt bearbeitet 21.11.2024 05:47:57
Netty is an open-source, asynchronous event-driven network application framework for rapid development of maintainable high performance protocol servers & clients. In Netty (io.netty:netty-codec-http2) before version 4.1.60.Final there is a vulnerabi...
CVE-2021-21176
- EPSS 1.71%
- Veröffentlicht 09.03.2021 18:15:17
- Zuletzt bearbeitet 21.11.2024 05:47:42
Inappropriate implementation in full screen mode in Google Chrome prior to 89.0.4389.72 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.
CVE-2021-21177
- EPSS 17.29%
- Veröffentlicht 09.03.2021 18:15:17
- Zuletzt bearbeitet 21.11.2024 05:47:43
Insufficient policy enforcement in Autofill in Google Chrome prior to 89.0.4389.72 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page.
CVE-2021-21178
- EPSS 1.62%
- Veröffentlicht 09.03.2021 18:15:17
- Zuletzt bearbeitet 21.11.2024 05:47:43
Inappropriate implementation in Compositing in Google Chrome on Linux and Windows prior to 89.0.4389.72 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.
CVE-2021-21179
- EPSS 1.41%
- Veröffentlicht 09.03.2021 18:15:17
- Zuletzt bearbeitet 21.11.2024 05:47:43
Use after free in Network Internals in Google Chrome on Linux prior to 89.0.4389.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2021-21180
- EPSS 1.62%
- Veröffentlicht 09.03.2021 18:15:17
- Zuletzt bearbeitet 21.11.2024 05:47:43
Use after free in tab search in Google Chrome prior to 89.0.4389.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.