Published: 22/02/2021 Updated: 07/11/2023

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

CVSS v3 Base Score: 9.6 | Impact Score: 6 | Exploitability Score: 2.8

VMScore: 605

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Heap buffer overflow in Tab Strip in Google Chrome before 88.0.4324.182 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.

Vulnerable Product	Search on Vulmon	Subscribe to Product
google chrome
fedoraproject fedora 32
fedoraproject fedora 33

Several vulnerabilities have been discovered in the chromium web browser CVE-2021-21148 Mattias Buelens discovered a buffer overflow issue in the v8 javascript library CVE-2021-21149 Ryoya Tsukasaki discovered a stack overflow issue in the Data Transfer implementation CVE-2021-21150 Woojin Oh discovered a use-after-free issu ...

A heap buffer overflow security issue was found in the Tab Strip component of the Chromium browser before version 8804324182 ...

 The Stable channel has been updated to 8804324182 for Windows, Mac and Linux which will roll out over the coming days/weeksA full list of changes in this build is available in the log Interested in switching release channels?  Find out how here If you find a new issue, please let us know by filing a bug The community help forum is ...

CWE-787 https://chromereleases.googleblog.com/2021/02/stable-channel-update-for-desktop_16.html https://crbug.com/1173269 https://security.gentoo.org/glsa/202104-08 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BI6ZIJQYP5DFMYVX4J5OGOU2NQLEZ3SB/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FE5SIKEVYTMDCC5OSXGOM2KRPYLHYMQX/https://nvd.nist.gov https://www.debian.org/security/2021/dsa-4858

CVE-2021-21154

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect