RSS   Vulnerabilities for 'Chrome'   RSS

2021-07-02
 
CVE-2021-30554

CWE-416
 

 
Use after free in WebGL in Google Chrome prior to 91.0.4472.114 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

 
 
CVE-2021-30555

CWE-416
 

 
Use after free in Sharing in Google Chrome prior to 91.0.4472.114 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page and user gesture.

 
 
CVE-2021-30556

CWE-416
 

 
Use after free in WebAudio in Google Chrome prior to 91.0.4472.114 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

 
 
CVE-2021-30557

CWE-416
 

 
Use after free in TabGroups in Google Chrome prior to 91.0.4472.114 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page.

 
2021-06-15
 
CVE-2021-30544

CWE-416
 

 
Use after free in BFCache in Google Chrome prior to 91.0.4472.101 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

 
 
CVE-2021-30545

CWE-416
 

 
Use after free in Extensions in Google Chrome prior to 91.0.4472.101 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page.

 
 
CVE-2021-30546

CWE-416
 

 
Use after free in Autofill in Google Chrome prior to 91.0.4472.101 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

 
 
CVE-2021-30547

CWE-787
 

 
Out of bounds write in ANGLE in Google Chrome prior to 91.0.4472.101 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page.

 
 
CVE-2021-30548

CWE-416
 

 
Use after free in Loader in Google Chrome prior to 91.0.4472.101 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

 
 
CVE-2021-30549

CWE-416
 

 
Use after free in Spell check in Google Chrome prior to 91.0.4472.101 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page.

 


Copyright 2021, cxsecurity.com

 

Back to Top