Svi
Pretraži prema proizvođaču
Pretraži prema CWE oznaci
O usluzi
Pretplate
Jezik
hr
en
CVE-2021-37973 - CERT CVE
CVE-2021-37973
ID
CVE-2021-37973
Sažetak
Use after free in Portals in Google Chrome prior to 94.0.4606.61 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.
Reference
https://chromereleases.googleblog.com/2021/09/stable-channel-update-for-desktop_24.html
https://crbug.com/1251727
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4DDW7HAHTS3SDVXBQUY4SURELO5D4X7R/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PM7MOYYHJSWLIFZ4TPJTD7MSA3HSSLV2/
https://www.debian.org/security/2022/dsa-5046
https://chromereleases.googleblog.com/2021/09/stable-channel-update-for-desktop_24.html
https://crbug.com/1251727
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4DDW7HAHTS3SDVXBQUY4SURELO5D4X7R/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PM7MOYYHJSWLIFZ4TPJTD7MSA3HSSLV2/
https://www.debian.org/security/2022/dsa-5046
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-37973
CVSS
Base:
6.8
Impact:
6.4
Exploitability:
8.6
Pristup
Vektor
Složenost
Autentikacija
NETWORK
MEDIUM
NONE
Impact
Povjerljivost
Cjelovitost
Dostupnost
PARTIAL
PARTIAL
PARTIAL
CVSS vektor
AV:N/AC:M/Au:N/C:P/I:P/A:P
Zadnje važnije ažuriranje
24-10-2025 - 21:08
Objavljeno
08-10-2021 - 22:15
