Lucene search

HistoryMar 23, 2023 - 12:00 a.m.

Google Chrome Security Update (stable-channel-update-for-desktop_20-2021-07) - Windows

2023-03-2300:00:00

plugins.openvas.org

google chrome

cve-2021-30565

cve-2021-30566

cve-2021-30567

cve-2021-30568

cve-2021-30569

cve-2021-30571

cve-2021-30572

cve-2021-30573

cve-2021-30574

cve-2021-30575

cve-2021-30576

cve-2021-30577

cve-2021-30578

cve-2021-30579

cve-2021-30580

cve-2021-30581

cve-2021-30582

cve-2021-30583

cve-2021-30584

cve-2021-30585

cve-2021-30586

cve-2021-30587

cve-2021-30588

cve-2021-30589

vulnerabilities

out of bounds write

stack buffer overflow

use after free

heap buffer overflow

insufficient policy enforcement

out of bounds read

uninitialized use

inappropriate implementation

incorrect security ui

type confusion

insufficient validation

upgrade

stable-channel-update-for-desktop_20.

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

CVSS3

9.6

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

AI Score

6.7

Confidence

Low

EPSS

0.011

Percentile

84.3%

JSON

Google Chrome is prone to multiple
vulnerabilities.

# Copyright (C) 2023 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
#
# This program is free software; you can redistribute it and/or
# modify it under the terms of the GNU General Public License
# as published by the Free Software Foundation; either version 2
# of the License, or (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.

CPE = "cpe:/a:google:chrome";

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.826946");
  script_version("2024-02-09T05:06:25+0000");
  script_cve_id("CVE-2021-30565", "CVE-2021-30566", "CVE-2021-30567", "CVE-2021-30568",
                "CVE-2021-30569", "CVE-2021-30571", "CVE-2021-30572", "CVE-2021-30573",
                "CVE-2021-30574", "CVE-2021-30575", "CVE-2021-30576", "CVE-2021-30577",
                "CVE-2021-30578", "CVE-2021-30579", "CVE-2021-30580", "CVE-2021-30581",
                "CVE-2021-30582", "CVE-2021-30583", "CVE-2021-30584", "CVE-2021-30585",
                "CVE-2021-30586", "CVE-2021-30587", "CVE-2021-30588", "CVE-2021-30589");
  script_tag(name:"cvss_base", value:"6.8");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:P/I:P/A:P");
  script_tag(name:"last_modification", value:"2024-02-09 05:06:25 +0000 (Fri, 09 Feb 2024)");
  script_tag(name:"severity_vector", value:"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H");
  script_tag(name:"severity_origin", value:"NVD");
  script_tag(name:"severity_date", value:"2021-08-10 20:35:00 +0000 (Tue, 10 Aug 2021)");
  script_tag(name:"creation_date", value:"2023-03-23 15:53:09 +0530 (Thu, 23 Mar 2023)");
  script_name("Google Chrome Security Update (stable-channel-update-for-desktop_20-2021-07) - Windows");

  script_tag(name:"summary", value:"Google Chrome is prone to multiple
  vulnerabilities.");

  script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present
  on the target host.");

  script_tag(name:"insight", value:"Multiple flaws exist due to,

  - Out of bounds write in Tab Groups.

  - Stack buffer overflow in Printing.

  - Multiple use after free errors.

  - Heap buffer overflow in WebGL.

  - Insufficient policy enforcement in DevTools.

  - Out of bounds read in Autofill.

  - Insufficient policy enforcement in Installer.

  - Uninitialized Use in Media.

  - Insufficient policy enforcement in Android intents.

  - Inappropriate implementation in Animation.

  - Insufficient policy enforcement in image handling on Windows.

  - Incorrect security UI in Downloads.

  - Inappropriate implementation in Compositing on Windows.

  - Type Confusion in V8.

  - Insufficient validation of untrusted input in Sharing.");

  script_tag(name:"impact", value:"Successful exploitation will allow
  attackers to run arbitrary code, bypass security restrictions, conduct spoofing
  and cause a denial of service on affected system.");

  script_tag(name:"affected", value:"Google Chrome version prior to
  92.0.4515.107 on Windows");

  script_tag(name:"solution", value:"Upgrade to Google Chrome version
  92.0.4515.107 or later. Please see the references for more information.");

  script_tag(name:"solution_type", value:"VendorFix");
  script_tag(name:"qod_type", value:"registry");
  script_xref(name:"URL", value:"https://chromereleases.googleblog.com/2021/07/stable-channel-update-for-desktop_20.html");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2023 Greenbone AG");
  script_family("General");
  script_dependencies("gb_google_chrome_detect_win.nasl");
  script_mandatory_keys("GoogleChrome/Win/Ver");
  exit(0);
}
include("host_details.inc");
include("version_func.inc");

if(!infos = get_app_version_and_location(cpe:CPE, exit_no_version:TRUE)) exit(0);
vers = infos['version'];
path = infos['location'];

if(version_is_less(version:vers, test_version:"92.0.4515.107"))
{
  report = report_fixed_ver(installed_version:vers, fixed_version:"92.0.4515.107", install_path:path);
  security_message(data:report);
  exit(0);
}
exit(99);