Published: 09/02/2021 Updated: 07/11/2023

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8

VMScore: 605

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Heap buffer overflow in Extensions in Google Chrome before 88.0.4324.146 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension.

Vulnerable Product	Search on Vulmon	Subscribe to Product
google chrome
fedoraproject fedora 32
fedoraproject fedora 33

Several vulnerabilities have been discovered in the chromium web browser CVE-2020-16044 Ned Williamson discovered a use-after-free issue in the WebRTC implementation CVE-2021-21117 Rory McNamara discovered a policy enforcement issue in Cryptohome CVE-2021-21118 Tyler Nighswander discovered a data validation issue in the v8 javas ...

A heap buffer overflow security issue was found in the Extensions component of the Chromium browser before version 8804324146 ...

 The Stable channel has been updated to 8804324146 for Windows, Mac and Linux which will roll out over the coming days/weeksA full list of changes in this build is available in the log Interested in switching release channels?  Find out how here If you find a new issue, please let us know by filing a bug The community help forum is ...

CWE-787 https://chromereleases.googleblog.com/2021/02/stable-channel-update-for-desktop.html https://crbug.com/1163504 https://security.gentoo.org/glsa/202104-08 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AUQSMNV7INLDDSD3RKI5S5EAULX2QC7P/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7ACWYJ74Z3YN2XH4QMUEGNBC3VXX464L/https://nvd.nist.gov https://www.debian.org/security/2021/dsa-4846

CVE-2021-21143

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect