CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
EPSS
Percentile
97.9%
Severity: High
Date : 2021-09-14
CVE-ID : CVE-2021-30625 CVE-2021-30626 CVE-2021-30627 CVE-2021-30628
CVE-2021-30629 CVE-2021-30630 CVE-2021-30631 CVE-2021-30632
CVE-2021-30633
Package : chromium
Type : arbitrary code execution
Remote : Yes
Link : https://security.archlinux.org/AVG-2379
The package chromium before version 93.0.4577.82-1 is vulnerable to
arbitrary code execution.
Upgrade to 93.0.4577.82-1.
The problems have been fixed upstream in version 93.0.4577.82.
None.
A use after free security issue has been found in the Selection API
component of the Chromium browser engine before version 93.0.4577.82.
An out of bounds memory access security issue has been found in the
ANGLE component of the Chromium browser engine before version
93.0.4577.82.
A type confusion security issue has been found in the Blink layout
component of the Chromium browser engine before version 93.0.4577.82.
A stack buffer overflow security issue has been found in the ANGLE
component of the Chromium browser engine before version 93.0.4577.82.
A use after free security issue has been found in the Permissions
component of the Chromium browser engine before version 93.0.4577.82.
An inappropriate implementation security issue has been found in the
Blink component of the Chromium browser engine before version
93.0.4577.82.
A type confusion security issue has been found in the Blink layout
component of the Chromium browser engine before version 93.0.4577.82.
An out of bounds write security issue has been found in the V8
component of the Chromium browser engine before version 93.0.4577.82.
Google is aware that exploits for this issue exist in the wild.
A use after free security issue has been found in the Indexed DB API
component of the Chromium browser engine before version 93.0.4577.82.
Google is aware that exploits for this issue exist in the wild.
A remote attacker could execute arbitrary code through crafted web
content.
https://chromereleases.googleblog.com/2021/09/stable-channel-update-for-desktop.html
https://crbug.com/1237533
https://crbug.com/1241036
https://crbug.com/1245786
https://crbug.com/1241123
https://crbug.com/1243646
https://crbug.com/1244568
https://crbug.com/1246932
https://crbug.com/1247763
https://crbug.com/1247766
https://security.archlinux.org/CVE-2021-30625
https://security.archlinux.org/CVE-2021-30626
https://security.archlinux.org/CVE-2021-30627
https://security.archlinux.org/CVE-2021-30628
https://security.archlinux.org/CVE-2021-30629
https://security.archlinux.org/CVE-2021-30630
https://security.archlinux.org/CVE-2021-30631
https://security.archlinux.org/CVE-2021-30632
https://security.archlinux.org/CVE-2021-30633
chromereleases.googleblog.com/2021/09/stable-channel-update-for-desktop.html
crbug.com/1237533
crbug.com/1241036
crbug.com/1241123
crbug.com/1243646
crbug.com/1244568
crbug.com/1245786
crbug.com/1246932
crbug.com/1247763
crbug.com/1247766
security.archlinux.org/AVG-2379
security.archlinux.org/CVE-2021-30625
security.archlinux.org/CVE-2021-30626
security.archlinux.org/CVE-2021-30627
security.archlinux.org/CVE-2021-30628
security.archlinux.org/CVE-2021-30629
security.archlinux.org/CVE-2021-30630
security.archlinux.org/CVE-2021-30631
security.archlinux.org/CVE-2021-30632
security.archlinux.org/CVE-2021-30633
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
EPSS
Percentile
97.9%