Heap buffer overflow in V8 in Google Chrome prior to 88.0.4324.150 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

CPENameOperatorVersion
debian_linuxeq10.0
fedoraeq32
fedoraeq33
chromelt88.0.4324.150

Name	Operator	Version
debian_linux	eq	10.0
fedora	eq	32
fedora	eq	33
chrome	lt	88.0.4324.150

References

packetstormsecurity.com/files/162579/Chrome-Array-Transfer-Bypass.html

chromereleases.googleblog.com/2021/02/stable-channel-update-for-desktop_4.html

crbug.com/1170176

lists.fedoraproject.org/archives/list/[email protected]/message/7ACWYJ74Z3YN2XH4QMUEGNBC3VXX464L/

lists.fedoraproject.org/archives/list/[email protected]/message/AUQSMNV7INLDDSD3RKI5S5EAULX2QC7P/

security.gentoo.org/glsa/202104-08

www.debian.org/security/2021/dsa-4858

freebsd 1

suse 6

kaspersky 3

debiancve 1

veracode 1

nessus 11

cisa_kev 1

osv 2

openvas 9

malwarebytes 2

cve 1

attackerkb 2

cvelist 1

mscve 1

alpinelinux 1

nvd 1

ubuntucve 1

chrome 1

threatpost 4

thn 11

krebs 1

archlinux 2

fedora 2

debian 1

securelist 1

mageia 1

rapid7blog 1

googleprojectzero 1

qualysblog 2

gentoo 1

freebsd

chromium -- heap buffer overflow in V8

2021-02-04 00:00:00

suse

Security update for chromium (important)

2021-02-11 00:00:00

Security update for opera (important)

2021-02-15 00:00:00

Security update for chromium (important)

2021-02-09 00:00:00

kaspersky

KLA12062 DoS vulnerability in Google Chrome

2021-02-04 00:00:00

KLA12179 DoS vulnerability in Opera

2021-02-09 00:00:00

KLA12063 DoS vulnerability in Microsoft Browser

2021-02-05 00:00:00

debiancve

CVE-2021-21148

2021-02-09 16:15:12

veracode

Arbitrary Code Execution

2021-02-10 05:23:19

nessus

Google Chrome < 88.0.4324.150 Vulnerability

2021-02-04 00:00:00

Google Chrome < 88.0.4324.150 Vulnerability

2021-02-04 00:00:00

openSUSE Security Update : chromium (openSUSE-2021-267)

2021-02-10 00:00:00

cisa_kev

Google Chromium V8 Heap Buffer Overflow Vulnerability

2021-11-03 00:00:00

osv

CVE-2021-21148

2021-02-09 16:15:12

chromium - security update

2021-02-19 00:00:00

openvas

openSUSE: Security Advisory for chromium (openSUSE-SU-2021:0267-1)

2021-04-16 00:00:00

Google Chrome Security Updates (stable-channel-update-for-desktop_4-2021-02) - Mac OS X

2021-02-09 00:00:00

Google Chrome Security Updates (stable-channel-update-for-desktop_4-2021-02) - Windows

2021-02-09 00:00:00

malwarebytes

Update now! Chrome patches zero-day that was exploited in the wild

2021-02-05 12:14:04

Update now! Google Chrome fixes two in-the-wild zero-days

2021-09-14 16:28:47

cve

CVE-2021-21148

2021-02-09 16:15:12

attackerkb

CVE-2021-21148

2021-02-09 00:00:00

CVE-2021-21193

2021-03-16 00:00:00

cvelist

CVE-2021-21148

2021-02-09 15:30:14

mscve

Chromium CVE-2021-21148: Heap buffer overflow in V8

2021-02-05 08:00:00

alpinelinux

CVE-2021-21148

2021-02-09 16:15:12

nvd

CVE-2021-21148

2021-02-09 16:15:12

ubuntucve

CVE-2021-21148

2021-02-09 00:00:00

chrome

Stable Channel Update for Desktop

2021-02-04 00:00:00

threatpost

Google Chrome Zero-Day Afflicts Windows, Mac Users

2021-02-05 15:47:55

Google Chrome Bug Actively Exploited as Zero-Day

2022-03-30 16:14:30

Pair of Google Chrome Zero-Day Bugs Actively Exploited

2021-09-14 15:03:41

thn

New Chrome 0-day Bug Under Active Attacks – Update Your Browser ASAP!

2021-03-03 06:03:00

New Chrome Browser 0-day Under Active Attack—Update Immediately!

2021-02-05 07:40:00

Another Google Chrome 0-Day Bug Found Actively Exploited In-the-Wild

2021-03-13 03:16:00

krebs

Microsoft Patch Tuesday, February 2021 Edition

2021-02-09 22:37:19

archlinux

[ASA-202102-6] chromium: multiple issues

2021-02-06 00:00:00

[ASA-202102-4] vivaldi: multiple issues

2021-02-06 00:00:00

fedora

[SECURITY] Fedora 32 Update: chromium-88.0.4324.150-1.fc32

2021-02-17 05:09:44

[SECURITY] Fedora 33 Update: chromium-88.0.4324.150-1.fc33

2021-02-10 01:20:58

debian

[SECURITY] [DSA 4858-1] chromium security update

2021-02-20 02:29:52

securelist

IT threat evolution Q1 2021. Non-mobile statistics

2021-05-31 10:00:05

mageia

Updated qtwebengine5 packages fix security vulnerabilities

2021-08-15 11:38:04

rapid7blog

Patch Tuesday - February 2021

2021-02-09 23:51:27

googleprojectzero

The More You Know, The More You Know You Don’t Know

2022-04-19 00:00:00

qualysblog

Qualys Response to CISA Alert: Binding Operational Directive 22-01

2021-11-09 06:15:01

Managing CISA Known Exploited Vulnerabilities with Qualys VMDR

2022-02-23 05:39:00

gentoo

Chromium, Google Chrome: Multiple vulnerabilities

2021-04-30 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

8.8 High

AI Score

Confidence

High

0.016 Low

EPSS

Percentile

87.6%

JSON

Related for PRION:CVE-2021-21148