CVE-2021-21123
- EPSS 9.97%
- Veröffentlicht 09.02.2021 14:15:15
- Zuletzt bearbeitet 21.11.2024 05:47:36
Insufficient data validation in File System API in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to bypass filesystem restrictions via a crafted HTML page.
CVE-2021-21124
- EPSS 7.85%
- Veröffentlicht 09.02.2021 14:15:15
- Zuletzt bearbeitet 21.11.2024 05:47:36
Potential user after free in Speech Recognizer in Google Chrome on Android prior to 88.0.4324.96 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page.
CVE-2021-21125
- EPSS 8.08%
- Veröffentlicht 09.02.2021 14:15:15
- Zuletzt bearbeitet 21.11.2024 05:47:37
Insufficient policy enforcement in File System API in Google Chrome on Windows prior to 88.0.4324.96 allowed a remote attacker to bypass filesystem restrictions via a crafted HTML page.
CVE-2020-16044
- EPSS 1.3%
- Veröffentlicht 09.02.2021 14:15:14
- Zuletzt bearbeitet 21.11.2024 05:06:44
Use after free in WebRTC in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to potentially exploit heap corruption via a crafted SCTP packet.
CVE-2020-16045
- EPSS 1.01%
- Veröffentlicht 14.01.2021 21:15:13
- Zuletzt bearbeitet 21.11.2024 05:06:44
Use after Free in Payments in Google Chrome on Android prior to 87.0.4280.66 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.
CVE-2020-16046
- EPSS 0.76%
- Veröffentlicht 14.01.2021 21:15:13
- Zuletzt bearbeitet 21.11.2024 05:06:44
Script injection in iOSWeb in Google Chrome on iOS prior to 84.0.4147.105 allowed a remote attacker to execute arbitrary code via a crafted HTML page.
CVE-2020-6572
- EPSS 10.59%
- Veröffentlicht 14.01.2021 21:15:13
- Zuletzt bearbeitet 13.01.2026 22:22:52
Use after free in Media in Google Chrome prior to 81.0.4044.92 allowed a remote attacker to execute arbitrary code via a crafted HTML page.
CVE-2021-21109
- EPSS 1.32%
- Veröffentlicht 08.01.2021 19:15:15
- Zuletzt bearbeitet 21.11.2024 05:47:35
Use after free in payments in Google Chrome prior to 87.0.4280.141 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.
CVE-2021-21110
- EPSS 3.1%
- Veröffentlicht 08.01.2021 19:15:15
- Zuletzt bearbeitet 21.11.2024 05:47:35
Use after free in safe browsing in Google Chrome prior to 87.0.4280.141 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page.
CVE-2021-21111
- EPSS 1.07%
- Veröffentlicht 08.01.2021 19:15:15
- Zuletzt bearbeitet 21.11.2024 05:47:35
Insufficient policy enforcement in WebUI in Google Chrome prior to 87.0.4280.141 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox escape via a crafted Chrome Extension.