Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft web media extensions - vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2021-21128
Heap buffer overflow in Blink in Google Chrome before 88.0.4324.96 allowed a remote malicious user to potentially exploit heap corruption via a crafted HTML page.
Google Chrome
Microsoft Edge Chromium
6.5
CVSSv3
CVE-2021-21129
Insufficient policy enforcement in File System API in Google Chrome before 88.0.4324.96 allowed a remote malicious user to bypass filesystem restrictions via a crafted HTML page.
Google Chrome
Microsoft Edge Chromium
6.5
CVSSv3
CVE-2021-21131
Insufficient policy enforcement in File System API in Google Chrome before 88.0.4324.96 allowed a remote malicious user to bypass filesystem restrictions via a crafted HTML page.
Google Chrome
Microsoft Edge Chromium
6.5
CVSSv3
CVE-2021-21133
Insufficient policy enforcement in Downloads in Google Chrome before 88.0.4324.96 allowed an attacker who convinced a user to download files to bypass navigation restrictions via a crafted HTML page.
Google Chrome
Microsoft Edge Chromium
6.5
CVSSv3
CVE-2021-21134
Incorrect security UI in Page Info in Google Chrome on iOS before 88.0.4324.96 allowed a remote malicious user to spoof security UI via a crafted HTML page.
Google Chrome
Microsoft Edge Chromium
6.5
CVSSv3
CVE-2021-21135
Inappropriate implementation in Performance API in Google Chrome before 88.0.4324.96 allowed a remote malicious user to leak cross-origin data via a crafted HTML page.
Google Chrome
Microsoft Edge Chromium
6.5
CVSSv3
CVE-2021-21136
Insufficient policy enforcement in WebView in Google Chrome on Android before 88.0.4324.96 allowed a remote malicious user to leak cross-origin data via a crafted HTML page.
Google Chrome
Microsoft Edge Chromium
6.5
CVSSv3
CVE-2021-21137
Inappropriate implementation in DevTools in Google Chrome before 88.0.4324.96 allowed a remote malicious user to obtain potentially sensitive information from disk via a crafted HTML page.
Google Chrome
Microsoft Edge Chromium
6.5
CVSSv3
CVE-2021-21139
Inappropriate implementation in iframe sandbox in Google Chrome before 88.0.4324.96 allowed a remote malicious user to bypass navigation restrictions via a crafted HTML page.
Google Chrome
Microsoft Edge Chromium
8.8
CVSSv3
CVE-2021-21118
Insufficient data validation in V8 in Google Chrome before 88.0.4324.96 allowed a remote malicious user to potentially perform out of bounds memory access via a crafted HTML page.
Google Chrome
Microsoft Edge Chromium
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »