Описание
Heap buffer overflow in fingerprint recognition in Google Chrome on ChromeOS prior to 96.0.4664.45 allowed a remote attacker who had compromised a WebUI renderer process to potentially perform a sandbox escape via a crafted HTML page.
Ссылки
- Vendor Advisory
- ExploitIssue TrackingPatchVendor Advisory
- Third Party Advisory
- Vendor Advisory
- ExploitIssue TrackingPatchVendor Advisory
- Third Party Advisory
Уязвимые конфигурации
Одновременно
Одно из
EPSS
9.6 Critical
CVSS3
6.8 Medium
CVSS2
Дефекты
Связанные уязвимости
Heap buffer overflow in fingerprint recognition in Google Chrome on ChromeOS prior to 96.0.4664.45 allowed a remote attacker who had compromised a WebUI renderer process to potentially perform a sandbox escape via a crafted HTML page.
Chromium: CVE-2021-38013 Heap buffer overflow in fingerprint recognition
Heap buffer overflow in fingerprint recognition in Google Chrome on Ch ...
Heap buffer overflow in fingerprint recognition in Google Chrome on ChromeOS prior to 96.0.4664.45 allowed a remote attacker who had compromised a WebUI renderer process to potentially perform a sandbox escape via a crafted HTML page.
Уязвимость реализации функции распознавания отпечатков пальцев браузера Google Chrome, позволяющая нарушителю выполнить произвольный код
EPSS
9.6 Critical
CVSS3
6.8 Medium
CVSS2