Total
758 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2021-30622 | 2 Fedoraproject, Microsoft | 3 Fedora, Edge, Edge Chromium | 2024-11-21 | 6.8 MEDIUM | 8.8 HIGH |
|
Chromium: CVE-2021-30622 Use after free in WebApp Installs
|
|||||
| CVE-2021-30621 | 2 Fedoraproject, Microsoft | 3 Fedora, Edge, Edge Chromium | 2024-11-21 | 4.3 MEDIUM | 6.5 MEDIUM |
|
Chromium: CVE-2021-30621 UI Spoofing in Autofill
|
|||||
| CVE-2021-30620 | 2 Fedoraproject, Microsoft | 3 Fedora, Edge, Edge Chromium | 2024-11-21 | 6.8 MEDIUM | 8.8 HIGH |
|
Chromium: CVE-2021-30620 Insufficient policy enforcement in Blink
|
|||||
| CVE-2021-30619 | 2 Fedoraproject, Microsoft | 3 Fedora, Edge, Edge Chromium | 2024-11-21 | 4.3 MEDIUM | 6.5 MEDIUM |
|
Chromium: CVE-2021-30619 UI Spoofing in Autofill
|
|||||
| CVE-2021-30618 | 2 Fedoraproject, Microsoft | 3 Fedora, Edge, Edge Chromium | 2024-11-21 | 6.8 MEDIUM | 8.8 HIGH |
|
Chromium: CVE-2021-30618 Inappropriate implementation in DevTools
|
|||||
| CVE-2021-30617 | 2 Fedoraproject, Microsoft | 3 Fedora, Edge, Edge Chromium | 2024-11-21 | 4.3 MEDIUM | 6.5 MEDIUM |
|
Chromium: CVE-2021-30617 Policy bypass in Blink
|
|||||
| CVE-2021-30616 | 2 Fedoraproject, Microsoft | 3 Fedora, Edge, Edge Chromium | 2024-11-21 | 6.8 MEDIUM | 8.8 HIGH |
|
Chromium: CVE-2021-30616 Use after free in Media
|
|||||
| CVE-2021-30615 | 2 Fedoraproject, Microsoft | 3 Fedora, Edge, Edge Chromium | 2024-11-21 | 4.3 MEDIUM | 6.5 MEDIUM |
|
Chromium: CVE-2021-30615 Cross-origin data leak in Navigation
|
|||||
| CVE-2021-30614 | 2 Fedoraproject, Microsoft | 3 Fedora, Edge, Edge Chromium | 2024-11-21 | 6.8 MEDIUM | 8.8 HIGH |
|
Chromium: CVE-2021-30614 Heap buffer overflow in TabStrip
|
|||||
| CVE-2021-30613 | 2 Fedoraproject, Microsoft | 3 Fedora, Edge, Edge Chromium | 2024-11-21 | 6.8 MEDIUM | 8.8 HIGH |
|
Chromium: CVE-2021-30613 Use after free in Base internals
|
|||||
| CVE-2021-30612 | 2 Fedoraproject, Microsoft | 3 Fedora, Edge, Edge Chromium | 2024-11-21 | 6.8 MEDIUM | 8.8 HIGH |
|
Chromium: CVE-2021-30612 Use after free in WebRTC
|
|||||
| CVE-2021-30611 | 2 Fedoraproject, Microsoft | 3 Fedora, Edge, Edge Chromium | 2024-11-21 | 6.8 MEDIUM | 8.8 HIGH |
|
Chromium: CVE-2021-30611 Use after free in WebRTC
|
|||||
| CVE-2021-30610 | 2 Fedoraproject, Microsoft | 3 Fedora, Edge, Edge Chromium | 2024-11-21 | 6.8 MEDIUM | 8.8 HIGH |
|
Chromium: CVE-2021-30610 Use after free in Extensions API
|
|||||
| CVE-2021-30609 | 2 Fedoraproject, Microsoft | 3 Fedora, Edge, Edge Chromium | 2024-11-21 | 6.8 MEDIUM | 8.8 HIGH |
|
Chromium: CVE-2021-30609 Use after free in Sign-In
|
|||||
| CVE-2021-30608 | 2 Fedoraproject, Microsoft | 3 Fedora, Edge, Edge Chromium | 2024-11-21 | 6.8 MEDIUM | 8.8 HIGH |
|
Chromium: CVE-2021-30608 Use after free in Web Share
|
|||||
| CVE-2021-30607 | 2 Fedoraproject, Microsoft | 3 Fedora, Edge, Edge Chromium | 2024-11-21 | 6.8 MEDIUM | 8.8 HIGH |
|
Chromium: CVE-2021-30607 Use after free in Permissions
|
|||||
| CVE-2021-30606 | 2 Fedoraproject, Microsoft | 3 Fedora, Edge, Edge Chromium | 2024-11-21 | 6.8 MEDIUM | 8.8 HIGH |
|
Chromium: CVE-2021-30606 Use after free in Blink
|
|||||
| CVE-2021-26439 | 2 Google, Microsoft | 2 Android, Edge | 2024-11-21 | 4.3 MEDIUM | 4.6 MEDIUM |
|
Microsoft Edge for Android Information Disclosure Vulnerability
|
|||||
| CVE-2021-26436 | 1 Microsoft | 1 Edge | 2024-11-21 | 6.8 MEDIUM | 6.1 MEDIUM |
|
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
|
|||||
| CVE-2021-24100 | 1 Microsoft | 1 Edge | 2024-11-21 | 2.6 LOW | 5.0 MEDIUM |
|
Microsoft Edge for Android Information Disclosure Vulnerability
|
|||||
| CVE-2021-21157 | 4 Fedoraproject, Google, Linux and 1 more | 5 Fedora, Chrome, Linux Kernel and 2 more | 2024-11-21 | 6.8 MEDIUM | 8.8 HIGH |
|
Use after free in Web Sockets in Google Chrome on Linux prior to 88.0.4324.182 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
|||||
| CVE-2021-21141 | 2 Google, Microsoft | 2 Chrome, Edge | 2024-11-21 | 4.3 MEDIUM | 6.5 MEDIUM |
|
Insufficient policy enforcement in File System API in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to bypass file extension policy via a crafted HTML page.
|
|||||
| CVE-2021-21140 | 2 Google, Microsoft | 2 Chrome, Edge | 2024-11-21 | 4.6 MEDIUM | 6.8 MEDIUM |
|
Uninitialized use in USB in Google Chrome prior to 88.0.4324.96 allowed a local attacker to potentially perform out of bounds memory access via via a USB device.
|
|||||
| CVE-2021-1705 | 1 Microsoft | 4 Edge, Windows 10, Windows Server 2016 and 1 more | 2024-11-21 | 7.6 HIGH | 4.2 MEDIUM |
|
Microsoft Edge (HTML-based) Memory Corruption Vulnerability
|
|||||
| CVE-2020-1462 | 1 Microsoft | 4 Edge, Windows 10, Windows Server 2016 and 1 more | 2024-11-21 | 4.3 MEDIUM | 4.3 MEDIUM |
|
An information disclosure vulnerability exists when Skype for Business is accessed via Microsoft Edge (EdgeHTML-based), aka 'Skype for Business via Microsoft Edge (EdgeHTML-based) Information Disclosure Vulnerability'.
|
|||||
| CVE-2020-1433 | 1 Microsoft | 4 Edge, Windows 10, Windows Server 2016 and 1 more | 2024-11-21 | 4.3 MEDIUM | 6.5 MEDIUM |
|
An information disclosure vulnerability exists when Microsoft Edge PDF Reader improperly handles objects in memory, aka 'Microsoft Edge PDF Information Disclosure Vulnerability'.
|
|||||
| CVE-2020-1242 | 1 Microsoft | 3 Edge, Windows 10, Windows Server 2019 | 2024-11-21 | 2.6 LOW | 5.3 MEDIUM |
|
An information disclosure vulnerability exists in the way that Microsoft Edge handles cross-origin requests, aka 'Microsoft Edge Information Disclosure Vulnerability'.
|
|||||
| CVE-2020-1220 | 1 Microsoft | 9 Edge, Windows 10, Windows 7 and 6 more | 2024-11-21 | 5.8 MEDIUM | 6.1 MEDIUM |
|
A spoofing vulnerability exists when theMicrosoft Edge (Chromium-based) in IE Mode improperly handles specific redirects, aka 'Microsoft Edge (Chromium-based) in IE Mode Spoofing Vulnerability'.
|
|||||
| CVE-2020-1219 | 1 Microsoft | 11 Chakracore, Edge, Internet Explorer and 8 more | 2024-11-21 | 7.6 HIGH | 7.5 HIGH |
|
A remote code execution vulnerability exists in the way that Microsoft browsers access objects in memory, aka 'Microsoft Browser Memory Corruption Vulnerability'.
|
|||||
| CVE-2020-1195 | 1 Microsoft | 1 Edge | 2024-11-21 | 4.3 MEDIUM | 5.9 MEDIUM |
|
An elevation of privilege vulnerability exists in Microsoft Edge (Chromium-based) when the Feedback extension improperly validates input, aka 'Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability'.
|
|||||
| CVE-2020-1096 | 1 Microsoft | 3 Edge, Windows 10, Windows Server 2019 | 2024-11-21 | 7.6 HIGH | 7.5 HIGH |
|
A remote code execution vulnerability exists when Microsoft Edge PDF Reader improperly handles objects in memory, aka 'Microsoft Edge PDF Remote Code Execution Vulnerability'.
|
|||||
| CVE-2020-1073 | 1 Microsoft | 5 Chakracore, Edge, Windows 10 and 2 more | 2024-11-21 | 9.3 HIGH | 8.1 HIGH |
|
A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka 'Scripting Engine Memory Corruption Vulnerability'.
|
|||||
| CVE-2020-1065 | 1 Microsoft | 4 Chakracore, Edge, Windows 10 and 1 more | 2024-11-21 | 7.6 HIGH | 7.5 HIGH |
|
A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka 'Scripting Engine Memory Corruption Vulnerability'.
|
|||||
| CVE-2020-1059 | 1 Microsoft | 3 Edge, Windows 10, Windows Server 2019 | 2024-11-21 | 4.3 MEDIUM | 4.3 MEDIUM |
|
A spoofing vulnerability exists when Microsoft Edge does not properly parse HTTP content, aka 'Microsoft Edge Spoofing Vulnerability'.
|
|||||
| CVE-2020-1056 | 1 Microsoft | 4 Edge, Windows 10, Windows Server 2016 and 1 more | 2024-11-21 | 5.8 MEDIUM | 8.1 HIGH |
|
An elevation of privilege vulnerability exists when Microsoft Edge does not properly enforce cross-domain policies, which could allow an attacker to access information from one domain and inject it into another domain.In a web-based attack scenario, an attacker could host a website that is used to attempt to exploit the vulnerability, aka 'Microsoft Edge Elevation of Privilege Vulnerability'.
|
|||||
| CVE-2020-1037 | 1 Microsoft | 5 Chakracore, Edge, Windows 10 and 2 more | 2024-11-21 | 7.6 HIGH | 7.5 HIGH |
|
A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge (HTML-based), aka 'Chakra Scripting Engine Memory Corruption Vulnerability'.
|
|||||
| CVE-2020-17058 | 1 Microsoft | 5 Edge, Internet Explorer, Windows 10 and 2 more | 2024-11-21 | 7.6 HIGH | 7.5 HIGH |
|
Microsoft Browser Memory Corruption Vulnerability
|
|||||
| CVE-2020-17054 | 1 Microsoft | 5 Chakracore, Edge, Windows 10 and 2 more | 2024-11-21 | 7.6 HIGH | 4.2 MEDIUM |
|
Chakra Scripting Engine Memory Corruption Vulnerability
|
|||||
| CVE-2020-17052 | 1 Microsoft | 10 Edge, Internet Explorer, Windows 10 and 7 more | 2024-11-21 | 6.8 MEDIUM | 7.5 HIGH |
|
Scripting Engine Memory Corruption Vulnerability
|
|||||
| CVE-2020-17048 | 1 Microsoft | 5 Chakracore, Edge, Windows 10 and 2 more | 2024-11-21 | 6.8 MEDIUM | 4.2 MEDIUM |
|
Chakra Scripting Engine Memory Corruption Vulnerability
|
|||||