CVE-2021-21138
- EPSS 0.51%
- Veröffentlicht 09.02.2021 14:15:16
- Zuletzt bearbeitet 21.11.2024 05:47:38
Use after free in DevTools in Google Chrome prior to 88.0.4324.96 allowed a local attacker to potentially perform a sandbox escape via a crafted file.
CVE-2021-21139
- EPSS 4.74%
- Veröffentlicht 09.02.2021 14:15:16
- Zuletzt bearbeitet 21.11.2024 05:47:38
Inappropriate implementation in iframe sandbox in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page.
CVE-2021-21140
- EPSS 0.76%
- Veröffentlicht 09.02.2021 14:15:16
- Zuletzt bearbeitet 21.11.2024 05:47:38
Uninitialized use in USB in Google Chrome prior to 88.0.4324.96 allowed a local attacker to potentially perform out of bounds memory access via via a USB device.
CVE-2021-21141
- EPSS 5.44%
- Veröffentlicht 09.02.2021 14:15:16
- Zuletzt bearbeitet 21.11.2024 05:47:38
Insufficient policy enforcement in File System API in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to bypass file extension policy via a crafted HTML page.
CVE-2021-21117
- EPSS 0.22%
- Veröffentlicht 09.02.2021 14:15:15
- Zuletzt bearbeitet 21.11.2024 05:47:36
Insufficient policy enforcement in Cryptohome in Google Chrome prior to 88.0.4324.96 allowed a local attacker to perform OS-level privilege escalation via a crafted file.
CVE-2021-21118
- EPSS 16.77%
- Veröffentlicht 09.02.2021 14:15:15
- Zuletzt bearbeitet 21.11.2024 05:47:36
Insufficient data validation in V8 in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page.
CVE-2021-21119
- EPSS 6.83%
- Veröffentlicht 09.02.2021 14:15:15
- Zuletzt bearbeitet 21.11.2024 05:47:36
Use after free in Media in Google Chrome prior to 88.0.4324.96 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page.
CVE-2021-21120
- EPSS 6.88%
- Veröffentlicht 09.02.2021 14:15:15
- Zuletzt bearbeitet 21.11.2024 05:47:36
Use after free in WebSQL in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2021-21121
- EPSS 6.19%
- Veröffentlicht 09.02.2021 14:15:15
- Zuletzt bearbeitet 21.11.2024 05:47:36
Use after free in Omnibox in Google Chrome on Linux prior to 88.0.4324.96 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page.
CVE-2021-21122
- EPSS 7.01%
- Veröffentlicht 09.02.2021 14:15:15
- Zuletzt bearbeitet 21.11.2024 05:47:36
Use after free in Blink in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.