cbcvebase.
CVE-2021-30547
published 2021-06-15

CVE-2021-30547: Out of bounds write in ANGLE in Google Chrome prior to 91.0.4472.101 allowed a remote attacker to potentially perform out of bounds memory access via a crafted…

PriorityP350high8.8CVSS 3.1
AVNACLPRNUIRSUCHIHAH
EPSS
3.58%
88.0th percentile
Out of bounds write in ANGLE in Google Chrome prior to 91.0.4472.101 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page.

Affected

23 ranges
VendorProductVersion rangeFixed in
chromiumchromium>= 0 < 93.0.4577.82-193.0.4577.82-1
chromiumchromium>= 0 < 93.0.4577.82-193.0.4577.82-1
chromiumchromium>= 0 < 93.0.4577.82-193.0.4577.82-1
chromiumchromium>= 0 < 93.0.4577.82-193.0.4577.82-1
debianchromium< chromium 93.0.4577.82-1 (bookworm)chromium 93.0.4577.82-1 (bookworm)
debiandebian_linux
debiandebian_linux
debianfirefox< chromium 93.0.4577.82-1 (bookworm)chromium 93.0.4577.82-1 (bookworm)
debianfirefox-esr< chromium 93.0.4577.82-1 (bookworm)chromium 93.0.4577.82-1 (bookworm)
debianthunderbird< chromium 93.0.4577.82-1 (bookworm)chromium 93.0.4577.82-1 (bookworm)
fedoraprojectfedora
googlechrome< 91.0.4472.10191.0.4472.101
googlechrome>= unspecified < 91.0.4472.10191.0.4472.101
googlechrome_chrome
mozillafirefox< 97.097.0
mozillafirefox
mozillathunderbird>= 0 < 1:78.12.0-11:78.12.0-1
mozillathunderbird>= 0 < 1:78.12.0-11:78.12.0-1
mozillathunderbird>= 0 < 1:78.12.0-11:78.12.0-1
mozillathunderbird>= 0 < 1:78.12.0-11:78.12.0-1
mozillathunderbird>= 0 < 1:78.13.0+build1-0ubuntu0.18.04.11:78.13.0+build1-0ubuntu0.18.04.1
mozillathunderbird>= 0 < 1:78.13.0+build1-0ubuntu0.20.04.21:78.13.0+build1-0ubuntu0.20.04.2
msrcmicrosoft_edge

CVSS provenance

nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
osv8.8HIGH
vendor_debian8.8HIGH
vendor_msrc8.8HIGH
vendor_redhat8.8HIGH
vendor_ubuntu5.9MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.