CVE-2021-30628
- EPSS 0.95%
- Veröffentlicht 08.10.2021 21:15:07
- Zuletzt bearbeitet 21.11.2024 06:04:19
Stack buffer overflow in ANGLE in Google Chrome prior to 93.0.4577.82 allowed a remote attacker to potentially exploit stack corruption via a crafted HTML page.
CVE-2021-30629
- EPSS 0.85%
- Veröffentlicht 08.10.2021 21:15:07
- Zuletzt bearbeitet 21.11.2024 06:04:19
Use after free in Permissions in Google Chrome prior to 93.0.4577.82 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page.
CVE-2021-30630
- EPSS 0.71%
- Veröffentlicht 08.10.2021 21:15:07
- Zuletzt bearbeitet 21.11.2024 06:04:19
Inappropriate implementation in Blink in Google Chrome prior to 93.0.4577.82 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page.
CVE-2021-30632
- EPSS 64.55%
- Veröffentlicht 08.10.2021 21:15:07
- Zuletzt bearbeitet 24.10.2025 21:08:18
Out of bounds write in V8 in Google Chrome prior to 93.0.4577.82 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2021-30633
- EPSS 32.66%
- Veröffentlicht 08.10.2021 21:15:07
- Zuletzt bearbeitet 24.10.2025 21:08:14
Use after free in Indexed DB API in Google Chrome prior to 93.0.4577.82 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.
CVE-2021-41133
- EPSS 0.41%
- Veröffentlicht 08.10.2021 14:15:08
- Zuletzt bearbeitet 21.11.2024 06:25:33
Flatpak is a system for building, distributing, and running sandboxed desktop applications on Linux. In versions prior to 1.10.4 and 1.12.0, Flatpak apps with direct access to AF_UNIX sockets such as those used by Wayland, Pipewire or pipewire-pulse ...
CVE-2021-42013
- EPSS 99.96%
- Veröffentlicht 07.10.2021 16:15:09
- Zuletzt bearbeitet 27.10.2025 17:36:49
It was found that the fix for CVE-2021-41773 in Apache HTTP Server 2.4.50 was insufficient. An attacker could use a path traversal attack to map URLs to files outside the directories configured by Alias-like directives. If files outside of these dire...
CVE-2021-28702
- EPSS 0.43%
- Veröffentlicht 06.10.2021 14:15:07
- Zuletzt bearbeitet 21.11.2024 06:00:10
PCI devices with RMRRs not deassigned correctly Certain PCI devices in a system might be assigned Reserved Memory Regions (specified via Reserved Memory Region Reporting, "RMRR"). These are typically used for platform tasks such as legacy USB emulati...
CVE-2021-39226
- EPSS 99.89%
- Veröffentlicht 05.10.2021 18:15:07
- Zuletzt bearbeitet 24.10.2025 14:47:23
Grafana is an open source data visualization platform. In affected versions unauthenticated and authenticated users are able to view the snapshot with the lowest database key by accessing the literal paths: /dashboard/snapshot/:key, or /api/snapshots...
CVE-2021-41524
- EPSS 24.98%
- Veröffentlicht 05.10.2021 09:15:07
- Zuletzt bearbeitet 21.11.2024 06:26:20
While fuzzing the 2.4.49 httpd, a new null pointer dereference was detected during HTTP/2 request processing, allowing an external source to DoS the server. This requires a specially crafted request. The vulnerability was recently introduced in versi...