MEDIUM 6.5 KEV Publié le 2021-10-08

CVE-2021-37976

Inappropriate implementation in Memory in Google Chrome prior to 94.0.4606.71 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page.

CVSS v3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

CISA Known Exploited Vulnerability

Ajouté au KEV: 2021-11-03
Deadline remédiation: 2021-11-17
Action requise: Apply updates per vendor instructions.
Ransomware: Non

Apps mobiles affectées

com.google.chrome.ios

1 CVE 1 KEV

Configurations CPE vulnérables

Vendor	Produit	Plateforme	Versions	CPE 2.3 URI
google	chrome	Android	<94.0.4606.71	cpe:2.3:a:google:chrome::::::::
google	chrome	iOS	<94.0.4606.71	cpe:2.3:a:google:chrome::::::::

Voir sur NVD ↗ Catalogue CISA KEV ↗