Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
alex vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2021-21126
Insufficient policy enforcement in extensions in Google Chrome before 88.0.4324.96 allowed a remote malicious user to bypass site isolation via a crafted Chrome Extension.
Google Chrome
Microsoft Edge Chromium
6.8
CVSSv2
CVE-2021-21127
Insufficient policy enforcement in extensions in Google Chrome before 88.0.4324.96 allowed a remote malicious user to bypass content security policy via a crafted Chrome Extension.
Google Chrome
Microsoft Edge Chromium
6.8
CVSSv2
CVE-2021-21128
Heap buffer overflow in Blink in Google Chrome before 88.0.4324.96 allowed a remote malicious user to potentially exploit heap corruption via a crafted HTML page.
Google Chrome
Microsoft Edge Chromium
4.3
CVSSv2
CVE-2021-21129
Insufficient policy enforcement in File System API in Google Chrome before 88.0.4324.96 allowed a remote malicious user to bypass filesystem restrictions via a crafted HTML page.
Google Chrome
Microsoft Edge Chromium
4.6
CVSSv2
CVE-2021-21140
Uninitialized use in USB in Google Chrome before 88.0.4324.96 allowed a local malicious user to potentially perform out of bounds memory access via via a USB device.
Google Chrome
Microsoft Edge
6.8
CVSSv2
CVE-2021-21124
Potential user after free in Speech Recognizer in Google Chrome on Android before 88.0.4324.96 allowed a remote malicious user to potentially perform a sandbox escape via a crafted HTML page.
Google Chrome
Microsoft Edge Chromium
6.8
CVSSv2
CVE-2021-21143
Heap buffer overflow in Extensions in Google Chrome before 88.0.4324.146 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension.
Google Chrome
Fedoraproject Fedora 32
Fedoraproject Fedora 33
6.8
CVSSv2
CVE-2021-21144
Heap buffer overflow in Tab Groups in Google Chrome before 88.0.4324.146 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension.
Google Chrome
Fedoraproject Fedora 32
Fedoraproject Fedora 33
6.8
CVSSv2
CVE-2021-21146
Use after free in Navigation in Google Chrome before 88.0.4324.146 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.
Google Chrome
Fedoraproject Fedora 32
Fedoraproject Fedora 33
6.8
CVSSv2
CVE-2021-21119
Use after free in Media in Google Chrome before 88.0.4324.96 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page.
Google Chrome
Microsoft Edge Chromium
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »