Published: 22/02/2021 Updated: 07/11/2023

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8

VMScore: 605

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Use after free in Web Sockets in Google Chrome on Linux before 88.0.4324.182 allowed a remote malicious user to potentially exploit heap corruption via a crafted HTML page.

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft edge
microsoft edge chromium
fedoraproject fedora 32
fedoraproject fedora 33
google chrome

Several vulnerabilities have been discovered in the chromium web browser CVE-2021-21148 Mattias Buelens discovered a buffer overflow issue in the v8 javascript library CVE-2021-21149 Ryoya Tsukasaki discovered a stack overflow issue in the Data Transfer implementation CVE-2021-21150 Woojin Oh discovered a use-after-free issu ...

A use after free security issue was found in the Web Sockets component of the Chromium browser before version 8804324182 ...

 The Stable channel has been updated to 8804324182 for Windows, Mac and Linux which will roll out over the coming days/weeksA full list of changes in this build is available in the log Interested in switching release channels?  Find out how here If you find a new issue, please let us know by filing a bug The community help forum is ...

CWE-416 https://chromereleases.googleblog.com/2021/02/stable-channel-update-for-desktop_16.html https://crbug.com/1170657 https://security.gentoo.org/glsa/202104-08 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BI6ZIJQYP5DFMYVX4J5OGOU2NQLEZ3SB/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FE5SIKEVYTMDCC5OSXGOM2KRPYLHYMQX/https://nvd.nist.gov https://www.debian.org/security/2021/dsa-4858

CVE-2021-21157

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect