HomePentest-Tools.com Logo

Google Chrome Security Update (stable-channel-update-for-desktop_25-2021-05) - Mac OS X CVE-2021-30521CVE-2021-30522CVE-2021-30523CVE-2021-30524CVE-2021-30525CVE-2021-30526CVE-2021-30527CVE-2021-30528CVE-2021-30529CVE-2021-30530CVE-2021-30531CVE-2021-30532CVE-2021-30533CVE-2021-30534CVE-2021-30535CVE-2021-30542CVE-2021-30543CVE-2021-30558CVE-2021-30536CVE-2021-30537CVE-2021-30538CVE-2021-30539CVE-2021-30540

Severity
CVSSv3 Score
8.8
Vulnerability description

Google Chrome is prone to multiple vulnerabilities.

Risk description

Multiple flaws exist due to, - Heap buffer overflow in Autofill. - Use after free errors in WebAudio, WebRTC, TabStrip, TabGroups, WebUI, WebAuthentication, Bookmarks. - Out of bounds write in TabStrip. - Out of bounds memory access in WebAudio. - Insufficient policy enforcement in Content Security Policy. - Insufficient policy enforcement in PopupBlocker. - Insufficient policy enforcement in iFrameSandbox. - Double free in ICU. - Insufficient policy enforcement in content security policy. - Out of bounds read in V8. - Insufficient policy enforcement in cookies. - Incorrect security UI in payments. Successful exploitation will allow attackers to run arbitrary code, bypass security restrictions, conduct spoofing and cause a denial of service on affected system.

Recommendation

Upgrade to Google Chrome version 91.0.4472.77 or later. Please see the references for more information.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
Jun 7, 2021
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available