VYPR

Vendor CVEs

Google

All CVEs

11,367 total · sorted by risk
  • CVE-2021-30550HigJun 15, 2021
    risk 0.57cvss 8.8epss 0.01

    Use after free in Accessibility in Google Chrome prior to 91.0.4472.101 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-30549HigJun 15, 2021
    risk 0.57cvss 8.8epss 0.01

    Use after free in Spell check in Google Chrome prior to 91.0.4472.101 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-30548HigJun 15, 2021
    risk 0.57cvss 8.8epss 0.01

    Use after free in Loader in Google Chrome prior to 91.0.4472.101 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-30547HigJun 15, 2021
    risk 0.57cvss 8.8epss 0.04

    Out of bounds write in ANGLE in Google Chrome prior to 91.0.4472.101 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page.

  • CVE-2021-30546HigJun 15, 2021
    risk 0.57cvss 8.8epss 0.01

    Use after free in Autofill in Google Chrome prior to 91.0.4472.101 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-30545HigJun 15, 2021
    risk 0.57cvss 8.8epss 0.01

    Use after free in Extensions in Google Chrome prior to 91.0.4472.101 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-30544HigJun 15, 2021
    risk 0.57cvss 8.8epss 0.01

    Use after free in BFCache in Google Chrome prior to 91.0.4472.101 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-0475HigJun 11, 2021
    risk 0.57cvss 8.8epss 0.01

    In on_l2cap_data_ind of btif_sock_l2cap.cc, there is possible memory corruption due to a use after free. This could lead to remote code execution over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation.Product:…

  • CVE-2021-0473HigJun 11, 2021
    risk 0.57cvss 8.8epss 0.00

    In rw_t3t_process_error of rw_t3t.cc, there is a possible double free due to uninitialized data. This could lead to remote code execution over NFC with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9…

  • CVE-2021-30543HigJun 7, 2021
    risk 0.57cvss 8.8epss 0.01

    Use after free in Tab Strip in Google Chrome prior to 91.0.4472.77 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-30542HigJun 7, 2021
    risk 0.57cvss 8.8epss 0.01

    Use after free in Tab Strip in Google Chrome prior to 91.0.4472.77 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-30535HigJun 7, 2021
    risk 0.57cvss 8.8epss 0.01

    Double free in ICU in Google Chrome prior to 91.0.4472.77 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-30530HigJun 7, 2021
    risk 0.57cvss 8.8epss 0.01

    Out of bounds memory access in WebAudio in Google Chrome prior to 91.0.4472.77 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page.

  • CVE-2021-30529HigJun 7, 2021
    risk 0.57cvss 8.8epss 0.01

    Use after free in Bookmarks in Google Chrome prior to 91.0.4472.77 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-30528HigJun 7, 2021
    risk 0.57cvss 8.8epss 0.01

    Use after free in WebAuthentication in Google Chrome on Android prior to 91.0.4472.77 allowed a remote attacker who had compromised the renderer process of a user who had saved a credit card in their Google account to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-30527HigJun 7, 2021
    risk 0.57cvss 8.8epss 0.01

    Use after free in WebUI in Google Chrome prior to 91.0.4472.77 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-30526HigJun 7, 2021
    risk 0.57cvss 8.8epss 0.01

    Out of bounds write in TabStrip in Google Chrome prior to 91.0.4472.77 allowed an attacker who convinced a user to install a malicious extension to perform an out of bounds memory write via a crafted HTML page.

  • CVE-2021-30525HigJun 7, 2021
    risk 0.57cvss 8.8epss 0.01

    Use after free in TabGroups in Google Chrome prior to 91.0.4472.77 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-30524HigJun 7, 2021
    risk 0.57cvss 8.8epss 0.01

    Use after free in TabStrip in Google Chrome prior to 91.0.4472.77 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-30523HigJun 7, 2021
    risk 0.57cvss 8.8epss 0.01

    Use after free in WebRTC in Google Chrome prior to 91.0.4472.77 allowed a remote attacker to potentially exploit heap corruption via a crafted SCTP packet.

  • CVE-2021-30522HigJun 7, 2021
    risk 0.57cvss 8.8epss 0.01

    Use after free in WebAudio in Google Chrome prior to 91.0.4472.77 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-30521HigJun 7, 2021
    risk 0.57cvss 8.8epss 0.01

    Heap buffer overflow in Autofill in Google Chrome on Android prior to 91.0.4472.77 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page.

  • CVE-2021-30520HigJun 4, 2021
    risk 0.57cvss 8.8epss 0.01

    Use after free in Tab Strip in Google Chrome prior to 90.0.4430.212 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-30519HigJun 4, 2021
    risk 0.57cvss 8.8epss 0.01

    Use after free in Payments in Google Chrome prior to 90.0.4430.212 allowed an attacker who convinced a user to install a malicious payments app to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-30518HigJun 4, 2021
    risk 0.57cvss 8.8epss 0.01

    Heap buffer overflow in Reader Mode in Google Chrome prior to 90.0.4430.212 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-30517HigJun 4, 2021
    risk 0.57cvss 8.8epss 0.03

    Type confusion in V8 in Google Chrome prior to 90.0.4430.212 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-30516HigJun 4, 2021
    risk 0.57cvss 8.8epss 0.01

    Heap buffer overflow in History in Google Chrome prior to 90.0.4430.212 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-30515HigJun 4, 2021
    risk 0.57cvss 8.8epss 0.01

    Use after free in File API in Google Chrome prior to 90.0.4430.212 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-30514HigJun 4, 2021
    risk 0.57cvss 8.8epss 0.01

    Use after free in Autofill in Google Chrome prior to 90.0.4430.212 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-30513HigJun 4, 2021
    risk 0.57cvss 8.8epss 0.02

    Type confusion in V8 in Google Chrome prior to 90.0.4430.212 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-30512HigJun 4, 2021
    risk 0.57cvss 8.8epss 0.01

    Use after free in Notifications in Google Chrome prior to 90.0.4430.212 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-30510HigJun 4, 2021
    risk 0.57cvss 8.8epss 0.01

    Use after free in Aura in Google Chrome prior to 90.0.4430.212 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-30509HigJun 4, 2021
    risk 0.57cvss 8.8epss 0.01

    Out of bounds write in Tab Strip in Google Chrome prior to 90.0.4430.212 allowed an attacker who convinced a user to install a malicious extension to perform an out of bounds memory write via a crafted HTML page and a crafted Chrome extension.

  • CVE-2021-30508HigJun 4, 2021
    risk 0.57cvss 8.8epss 0.01

    Heap buffer overflow in Media Feeds in Google Chrome prior to 90.0.4430.212 allowed an attacker who convinced a user to enable certain features in Chrome to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-30507HigJun 4, 2021
    risk 0.57cvss 8.8epss 0.01

    Inappropriate implementation in Offline in Google Chrome on Android prior to 90.0.4430.212 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page.

  • CVE-2021-30506HigJun 4, 2021
    risk 0.57cvss 8.8epss 0.01

    Incorrect security UI in Web App Installs in Google Chrome on Android prior to 90.0.4430.212 allowed an attacker who convinced a user to install a web application to inject scripts or HTML into a privileged page via a crafted HTML page.

  • CVE-2021-21233HigApr 30, 2021
    risk 0.57cvss 8.8epss 0.01

    Heap buffer overflow in ANGLE in Google Chrome on Windows prior to 90.0.4430.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-21232HigApr 30, 2021
    risk 0.57cvss 8.8epss 0.01

    Use after free in Dev Tools in Google Chrome prior to 90.0.4430.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-21231HigApr 30, 2021
    risk 0.57cvss 8.8epss 0.01

    Insufficient data validation in V8 in Google Chrome prior to 90.0.4430.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-21230HigApr 30, 2021
    risk 0.57cvss 8.8epss 0.02

    Type confusion in V8 in Google Chrome prior to 90.0.4430.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-21227HigApr 30, 2021
    risk 0.57cvss 8.8epss 0.01

    Insufficient data validation in V8 in Google Chrome prior to 90.0.4430.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-21214HigApr 26, 2021
    risk 0.57cvss 8.8epss 0.01

    Use after free in Network API in Google Chrome prior to 90.0.4430.72 allowed a remote attacker to potentially exploit heap corruption via a crafted Chrome Extension.

  • CVE-2021-21213HigApr 26, 2021
    risk 0.57cvss 8.8epss 0.02

    Use after free in WebMIDI in Google Chrome prior to 90.0.4430.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-21204HigApr 26, 2021
    risk 0.57cvss 8.8epss 0.02

    Use after free in Blink in Google Chrome on OS X prior to 90.0.4430.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-21203HigApr 26, 2021
    risk 0.57cvss 8.8epss 0.02

    Use after free in Blink in Google Chrome prior to 90.0.4430.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-21199HigApr 9, 2021
    risk 0.57cvss 8.8epss 0.01

    Use after free in Aura in Google Chrome on Linux prior to 89.0.4389.114 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-21197HigApr 9, 2021
    risk 0.57cvss 8.8epss 0.01

    Heap buffer overflow in TabStrip in Google Chrome prior to 89.0.4389.114 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-21196HigApr 9, 2021
    risk 0.57cvss 8.8epss 0.01

    Heap buffer overflow in TabStrip in Google Chrome on Windows prior to 89.0.4389.114 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-21195HigApr 9, 2021
    risk 0.57cvss 8.8epss 0.02

    Use after free in V8 in Google Chrome prior to 89.0.4389.114 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-21194HigApr 9, 2021
    risk 0.57cvss 8.8epss 0.01

    Use after free in screen sharing in Google Chrome prior to 89.0.4389.114 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

Page 33 of 228