Lucene search

K

ChromeCVELIST:CVE-2021-21144

HistoryFeb 09, 2021 - 2:55 p.m.

CVE-2021-21144

2021-02-0914:55:28

Chrome

www.cve.org

2

9.3 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

54.8%

Heap buffer overflow in Tab Groups in Google Chrome prior to 88.0.4324.146 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension.

CNA Affected

[
  {
    "product": "Chrome",
    "vendor": "Google",
    "versions": [
      {
        "lessThan": "88.0.4324.146",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

References

chromereleases.googleblog.com/2021/02/stable-channel-update-for-desktop.html

crbug.com/1163845

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7ACWYJ74Z3YN2XH4QMUEGNBC3VXX464L/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AUQSMNV7INLDDSD3RKI5S5EAULX2QC7P/

security.gentoo.org/glsa/202104-08

9.3 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

54.8%

Related for CVELIST:CVE-2021-21144

nvd1 mscve1 debiancve1 prion1 veracode1 ubuntucve1 cve1 nessus9 kaspersky2 freebsd1 openvas7 suse2 chrome1 fedora2 archlinux2 osv1 debian2 rapid7blog1 gentoo1