Chrome - Vulncode-DB

Product:
Chrome
(Google)

Repositories	• https://github.com/googlei18n/sfntly • https://github.com/uclouvain/openjpeg • https://github.com/behdad/harfbuzz
#Vulnerabilities	2380

Date	Id	Summary	Products	Score	Patch	Annotated
2021-02-22	CVE-2021-21157	Use after free in Web Sockets in Google Chrome on Linux prior to 88.0.4324.182 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.	Chrome	8.8
2021-02-22	CVE-2021-21156	Heap buffer overflow in V8 in Google Chrome prior to 88.0.4324.182 allowed a remote attacker to potentially exploit heap corruption via a crafted script.	Chrome	8.8
2021-02-22	CVE-2021-21155	Heap buffer overflow in Tab Strip in Google Chrome on Windows prior to 88.0.4324.182 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.	Chrome	9.6
2021-02-22	CVE-2021-21154	Heap buffer overflow in Tab Strip in Google Chrome prior to 88.0.4324.182 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.	Chrome	9.6
2021-02-22	CVE-2021-21153	Stack buffer overflow in GPU Process in Google Chrome on Linux prior to 88.0.4324.182 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page.	Chrome	8.8
2021-02-22	CVE-2021-21152	Heap buffer overflow in Media in Google Chrome on Linux prior to 88.0.4324.182 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.	Chrome	8.8
2021-02-22	CVE-2021-21151	Use after free in Payments in Google Chrome prior to 88.0.4324.182 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page.	Chrome	9.6
2021-02-22	CVE-2021-21150	Use after free in Downloads in Google Chrome on Windows prior to 88.0.4324.182 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.	Chrome	9.6
2021-02-22	CVE-2021-21149	Stack buffer overflow in Data Transfer in Google Chrome on Linux prior to 88.0.4324.182 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page.	Chrome	8.8
2021-02-09	CVE-2021-21141	Insufficient policy enforcement in File System API in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to bypass file extension policy via a crafted HTML page.	Chrome, Edge	6.5