CVE-2021-3564
- EPSS 0.49%
- Veröffentlicht 08.06.2021 12:15:11
- Zuletzt bearbeitet 21.11.2024 06:21:51
A flaw double-free memory corruption in the Linux kernel HCI device initialization subsystem was found in the way user attach malicious HCI TTY Bluetooth device. A local user could use this flaw to crash the system. This flaw affects all the Linux ke...
CVE-2021-23169
- EPSS 2.29%
- Veröffentlicht 08.06.2021 12:15:10
- Zuletzt bearbeitet 21.11.2024 05:51:19
A heap-buffer overflow was found in the copyIntoFrameBuffer function of OpenEXR in versions before 3.0.1. An attacker could use this flaw to execute arbitrary code with the permissions of the user running the application compiled against OpenEXR.
CVE-2021-23215
- EPSS 1.15%
- Veröffentlicht 08.06.2021 12:15:10
- Zuletzt bearbeitet 21.11.2024 05:51:23
An integer overflow leading to a heap-buffer overflow was found in the DwaCompressor of OpenEXR in versions before 3.0.1. An attacker could use this flaw to crash an application compiled with OpenEXR.
CVE-2021-26260
- EPSS 1.1%
- Veröffentlicht 08.06.2021 12:15:10
- Zuletzt bearbeitet 21.11.2024 05:55:59
An integer overflow leading to a heap-buffer overflow was found in the DwaCompressor of OpenEXR in versions before 3.0.1. An attacker could use this flaw to crash an application compiled with OpenEXR. This is a different flaw from CVE-2021-23215.
CVE-2021-33560
- EPSS 2.34%
- Veröffentlicht 08.06.2021 11:15:07
- Zuletzt bearbeitet 03.12.2025 15:15:49
Libgcrypt before 1.8.8 and 1.9.x before 1.9.3 mishandles ElGamal encryption because it lacks exponent blinding to address a side-channel attack against mpi_powm, and the window size is not chosen appropriately. This, for example, affects use of ElGam...
CVE-2021-30521
- EPSS 1.33%
- Veröffentlicht 07.06.2021 20:15:08
- Zuletzt bearbeitet 21.11.2024 06:04:05
Heap buffer overflow in Autofill in Google Chrome on Android prior to 91.0.4472.77 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page.
CVE-2021-30522
- EPSS 1.43%
- Veröffentlicht 07.06.2021 20:15:08
- Zuletzt bearbeitet 21.11.2024 06:04:05
Use after free in WebAudio in Google Chrome prior to 91.0.4472.77 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2021-30523
- EPSS 1.1%
- Veröffentlicht 07.06.2021 20:15:08
- Zuletzt bearbeitet 21.11.2024 06:04:05
Use after free in WebRTC in Google Chrome prior to 91.0.4472.77 allowed a remote attacker to potentially exploit heap corruption via a crafted SCTP packet.
CVE-2021-30524
- EPSS 0.96%
- Veröffentlicht 07.06.2021 20:15:08
- Zuletzt bearbeitet 21.11.2024 06:04:06
Use after free in TabStrip in Google Chrome prior to 91.0.4472.77 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page.
CVE-2021-30525
- EPSS 0.9%
- Veröffentlicht 07.06.2021 20:15:08
- Zuletzt bearbeitet 21.11.2024 06:04:06
Use after free in TabGroups in Google Chrome prior to 91.0.4472.77 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page.