IDCVSSSummaryLast (major) updatePublished
CVE-2021-3770 4.6
vim is vulnerable to Heap-based Buffer Overflow
24-09-2021 - 23:15 06-09-2021 - 12:15
CVE-2021-30606 6.8
Chromium: CVE-2021-30606 Use after free in Blink
24-09-2021 - 23:15 03-09-2021 - 20:15
CVE-2021-30607 6.8
Chromium: CVE-2021-30607 Use after free in Permissions
24-09-2021 - 23:15 03-09-2021 - 20:15
CVE-2021-30608 6.8
Chromium: CVE-2021-30608 Use after free in Web Share
24-09-2021 - 23:15 03-09-2021 - 20:15
CVE-2021-30609 6.8
Chromium: CVE-2021-30609 Use after free in Sign-In
24-09-2021 - 23:15 03-09-2021 - 20:15
CVE-2021-30610 6.8
Chromium: CVE-2021-30610 Use after free in Extensions API
24-09-2021 - 23:15 03-09-2021 - 20:15
CVE-2021-30611 6.8
Chromium: CVE-2021-30611 Use after free in WebRTC
24-09-2021 - 23:15 03-09-2021 - 20:15
CVE-2021-30612 6.8
Chromium: CVE-2021-30612 Use after free in WebRTC
24-09-2021 - 23:15 03-09-2021 - 20:15
CVE-2021-30613 6.8
Chromium: CVE-2021-30613 Use after free in Base internals
24-09-2021 - 23:15 03-09-2021 - 20:15
CVE-2021-30614 6.8
Chromium: CVE-2021-30614 Heap buffer overflow in TabStrip
24-09-2021 - 23:15 03-09-2021 - 20:15
CVE-2021-30615 4.3
Chromium: CVE-2021-30615 Cross-origin data leak in Navigation
24-09-2021 - 23:15 03-09-2021 - 20:15
CVE-2021-30616 6.8
Chromium: CVE-2021-30616 Use after free in Media
24-09-2021 - 23:15 03-09-2021 - 20:15
CVE-2021-30617 4.3
Chromium: CVE-2021-30617 Policy bypass in Blink
24-09-2021 - 23:15 03-09-2021 - 20:15
CVE-2021-30618 6.8
Chromium: CVE-2021-30618 Inappropriate implementation in DevTools
24-09-2021 - 23:15 03-09-2021 - 20:15
CVE-2021-30619 4.3
Chromium: CVE-2021-30619 UI Spoofing in Autofill
24-09-2021 - 23:15 03-09-2021 - 20:15
CVE-2021-30620 6.8
Chromium: CVE-2021-30620 Insufficient policy enforcement in Blink
24-09-2021 - 23:15 03-09-2021 - 20:15
CVE-2021-30621 4.3
Chromium: CVE-2021-30621 UI Spoofing in Autofill
24-09-2021 - 23:15 03-09-2021 - 20:15
CVE-2021-30622 6.8
Chromium: CVE-2021-30622 Use after free in WebApp Installs
24-09-2021 - 23:15 03-09-2021 - 20:15
CVE-2021-30623 6.8
Chromium: CVE-2021-30623 Use after free in Bookmarks
24-09-2021 - 23:15 03-09-2021 - 20:15
CVE-2021-30624 6.8
Chromium: CVE-2021-30624 Use after free in Autofill
24-09-2021 - 23:15 03-09-2021 - 20:15
CVE-2021-39163 3.5
Matrix is an ecosystem for open federated Instant Messaging and Voice over IP. In versions 1.41.0 and prior, unauthorised users can access the name, avatar, topic and number of members of a room if they know the ID of the room. This vulnerability is
24-09-2021 - 23:15 31-08-2021 - 16:15
CVE-2021-39164 3.5
Matrix is an ecosystem for open federated Instant Messaging and Voice over IP. In versions 1.41.0 and prior, unauthorised users can access the membership (list of members, with their display names) of a room if they know the ID of the room. The vulne
24-09-2021 - 23:15 31-08-2021 - 17:15
CVE-2021-34434 5.0
In Eclipse Mosquitto versions 2.0 to 2.0.11, when using the dynamic security plugin, if the ability for a client to make subscriptions on a topic is revoked when a durable client is offline, then existing subscriptions for that client are not revoked
24-09-2021 - 23:15 30-08-2021 - 20:15
CVE-2021-39272 4.3
Fetchmail before 6.4.22 fails to enforce STARTTLS session encryption in some circumstances, such as a certain situation with IMAP and PREAUTH.
24-09-2021 - 23:15 30-08-2021 - 06:15
CVE-2021-28694 4.6
IOMMU page mapping issues on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Both AMD and Intel allow ACPI tables to specify regions of memory which should be left u
24-09-2021 - 23:15 27-08-2021 - 19:15
CVE-2021-28695 4.6
IOMMU page mapping issues on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Both AMD and Intel allow ACPI tables to specify regions of memory which should be left u
24-09-2021 - 23:15 27-08-2021 - 19:15
CVE-2021-28696 4.6
IOMMU page mapping issues on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Both AMD and Intel allow ACPI tables to specify regions of memory which should be left u
24-09-2021 - 23:15 27-08-2021 - 19:15
CVE-2021-28697 4.6
grant table v2 status pages may remain accessible after de-allocation Guest get permitted access to certain Xen-owned pages of memory. The majority of such pages remain allocated / associated with a guest for its entire lifetime. Grant table v2 statu
24-09-2021 - 23:15 27-08-2021 - 19:15
CVE-2021-28698 4.9
long running loops in grant table handling In order to properly monitor resource use, Xen maintains information on the grant mappings a domain may create to map grants offered by other domains. In the process of carrying out certain actions, Xen woul
24-09-2021 - 23:15 27-08-2021 - 19:15
CVE-2021-28699 4.9
inadequate grant-v2 status frames array bounds check The v2 grant table interface separates grant attributes from grant status. That is, when operating in this mode, a guest has two tables. As a result, guests also need to be able to retrieve the add
24-09-2021 - 23:15 27-08-2021 - 19:15
CVE-2021-28700 6.8
xen/arm: No memory limit for dom0less domUs The dom0less feature allows an administrator to create multiple unprivileged domains directly from Xen. Unfortunately, the memory limit from them is not set. This allow a domain to allocate memory beyond wh
24-09-2021 - 23:15 27-08-2021 - 19:15
CVE-2021-30590 6.8
Heap buffer overflow in Bookmarks in Google Chrome prior to 92.0.4515.131 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
24-09-2021 - 23:15 26-08-2021 - 18:15
CVE-2021-30591 6.8
Use after free in File System API in Google Chrome prior to 92.0.4515.131 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
24-09-2021 - 23:15 26-08-2021 - 18:15
CVE-2021-30592 6.8
Out of bounds write in Tab Groups in Google Chrome prior to 92.0.4515.131 allowed an attacker who convinced a user to install a malicious extension to perform an out of bounds memory write via a crafted HTML page.
24-09-2021 - 23:15 26-08-2021 - 18:15
CVE-2021-30593 5.8
Out of bounds read in Tab Strip in Google Chrome prior to 92.0.4515.131 allowed an attacker who convinced a user to install a malicious extension to perform an out of bounds memory read via a crafted HTML page.
24-09-2021 - 23:15 26-08-2021 - 18:15
CVE-2021-30594 4.6
Use after free in Page Info UI in Google Chrome prior to 92.0.4515.131 allowed a remote attacker to potentially exploit heap corruption via physical access to the device.
24-09-2021 - 23:15 26-08-2021 - 18:15
CVE-2021-30596 4.3
Incorrect security UI in Navigation in Google Chrome on Android prior to 92.0.4515.131 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.
24-09-2021 - 23:15 26-08-2021 - 18:15
CVE-2021-30597 4.6
Use after free in Browser UI in Google Chrome on Chrome prior to 92.0.4515.131 allowed a remote attacker to potentially exploit heap corruption via physical access to the device.
24-09-2021 - 23:15 26-08-2021 - 18:15
CVE-2021-30598 6.8
Type confusion in V8 in Google Chrome prior to 92.0.4515.159 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.
24-09-2021 - 23:15 26-08-2021 - 18:15
CVE-2021-30599 6.8
Type confusion in V8 in Google Chrome prior to 92.0.4515.159 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.
24-09-2021 - 23:15 26-08-2021 - 18:15
CVE-2021-30600 6.8
Use after free in Printing in Google Chrome prior to 92.0.4515.159 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page.
24-09-2021 - 23:15 26-08-2021 - 18:15
CVE-2021-30601 6.8
Use after free in Extensions API in Google Chrome prior to 92.0.4515.159 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page.
24-09-2021 - 23:15 26-08-2021 - 18:15
CVE-2021-30602 6.8
Use after free in WebRTC in Google Chrome prior to 92.0.4515.159 allowed an attacker who convinced a user to visit a malicious website to potentially exploit heap corruption via a crafted HTML page.
24-09-2021 - 23:15 26-08-2021 - 18:15
CVE-2021-30603 5.1
Data race in WebAudio in Google Chrome prior to 92.0.4515.159 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
24-09-2021 - 23:15 26-08-2021 - 18:15
CVE-2021-30604 6.8
Use after free in ANGLE in Google Chrome prior to 92.0.4515.159 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
24-09-2021 - 23:15 26-08-2021 - 18:15
CVE-2021-38165 2.6
Lynx through 2.8.9 mishandles the userinfo subcomponent of a URI, which allows remote attackers to discover cleartext credentials because they may appear in SNI data.
24-09-2021 - 23:15 07-08-2021 - 18:15
CVE-2021-30565 6.8
Out of bounds write in Tab Groups in Google Chrome on Linux and ChromeOS prior to 92.0.4515.107 allowed an attacker who convinced a user to install a malicious extension to perform an out of bounds memory write via a crafted HTML page.
24-09-2021 - 23:15 03-08-2021 - 20:15
CVE-2021-30579 6.8
Use after free in UI framework in Google Chrome prior to 92.0.4515.107 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
24-09-2021 - 23:15 03-08-2021 - 20:15
CVE-2021-30580 4.3
Insufficient policy enforcement in Android intents in Google Chrome prior to 92.0.4515.107 allowed an attacker who convinced a user to install a malicious application to obtain potentially sensitive information via a crafted HTML page.
24-09-2021 - 23:15 03-08-2021 - 20:15
CVE-2021-30581 6.8
Use after free in DevTools in Google Chrome prior to 92.0.4515.107 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page.
24-09-2021 - 23:15 03-08-2021 - 20:15
Back to Top Mark selected
Back to Top