CVE-2021-30617Google Chrome Chrome vulnerability

4 documents4 sources
Severity
6.5MEDIUM
No vector
EPSS
1.8%
top 17.23%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Debian ChromiumGoogle Chrome ChromeMsrc Microsoft Edge
Timeline
PublishedMay 24

Description

Policy bypass in Blink in Google Chrome prior to 93.0.4577.63 allowed a remote attacker to bypass site isolation via a crafted HTML page.

Affected Packages3 packages

debiandebian/chromium< chromium 93.0.4577.82-1 (bookworm)

🔴Vulnerability Details

1
GHSA
GHSA-q8g3-jg66-m2gf: Policy bypass in Blink in Google Chrome prior to 932022-05-24

📋Vendor Advisories

3
Microsoft
Chromium: CVE-2021-30617 Policy bypass in Blink2021-09-14
Chrome
Stable Channel Update for Desktop: CVE-2021-306152021-08-31
Debian
CVE-2021-30617: chromium - Chromium: CVE-2021-30617 Policy bypass in Blink2021