Microsoft Edge Chromium vulnerabilities
210 known vulnerabilities affecting microsoft/edge_chromium.
Total CVEs
210
CISA KEV
9
actively exploited
Public exploits
3
Exploited in wild
7
Severity breakdown
CRITICAL12HIGH98MEDIUM93LOW7
Vulnerabilities
Page 11 of 11
CVE-2021-21123MEDIUMCVSS 6.5fixed in 88.0.705.502021-02-09
CVE-2021-21123 [MEDIUM] CWE-20 CVE-2021-21123: Insufficient data validation in File System API in Google Chrome prior to 88.0.4324.96 allowed a rem
Insufficient data validation in File System API in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to bypass filesystem restrictions via a crafted HTML page.
nvd
CVE-2021-21135MEDIUMCVSS 6.5fixed in 88.0.705.502021-02-09
CVE-2021-21135 [MEDIUM] CWE-346 CVE-2021-21135: Inappropriate implementation in Performance API in Google Chrome prior to 88.0.4324.96 allowed a rem
Inappropriate implementation in Performance API in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
nvd
CVE-2021-21133MEDIUMCVSS 6.5fixed in 88.0.705.502021-02-09
CVE-2021-21133 [MEDIUM] CVE-2021-21133: Insufficient policy enforcement in Downloads in Google Chrome prior to 88.0.4324.96 allowed an attac
Insufficient policy enforcement in Downloads in Google Chrome prior to 88.0.4324.96 allowed an attacker who convinced a user to download files to bypass navigation restrictions via a crafted HTML page.
nvd
CVE-2021-21130MEDIUMCVSS 6.5fixed in 88.0.705.502021-02-09
CVE-2021-21130 [MEDIUM] CVE-2021-21130: Insufficient policy enforcement in File System API in Google Chrome prior to 88.0.4324.96 allowed a
Insufficient policy enforcement in File System API in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to bypass filesystem restrictions via a crafted HTML page.
nvd
CVE-2021-21137MEDIUMCVSS 6.5fixed in 88.0.705.502021-02-09
CVE-2021-21137 [MEDIUM] CWE-74 CVE-2021-21137: Inappropriate implementation in DevTools in Google Chrome prior to 88.0.4324.96 allowed a remote att
Inappropriate implementation in DevTools in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to obtain potentially sensitive information from disk via a crafted HTML page.
nvd
CVE-2021-21131MEDIUMCVSS 6.5fixed in 88.0.705.502021-02-09
CVE-2021-21131 [MEDIUM] CWE-59 CVE-2021-21131: Insufficient policy enforcement in File System API in Google Chrome prior to 88.0.4324.96 allowed a
Insufficient policy enforcement in File System API in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to bypass filesystem restrictions via a crafted HTML page.
nvd
CVE-2021-21136MEDIUMCVSS 6.5fixed in 88.0.705.502021-02-09
CVE-2021-21136 [MEDIUM] CWE-346 CVE-2021-21136: Insufficient policy enforcement in WebView in Google Chrome on Android prior to 88.0.4324.96 allowed
Insufficient policy enforcement in WebView in Google Chrome on Android prior to 88.0.4324.96 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
nvd
CVE-2021-21126MEDIUMCVSS 6.5fixed in 88.0.705.502021-02-09
CVE-2021-21126 [MEDIUM] CWE-20 CVE-2021-21126: Insufficient policy enforcement in extensions in Google Chrome prior to 88.0.4324.96 allowed a remot
Insufficient policy enforcement in extensions in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to bypass site isolation via a crafted Chrome Extension.
nvd
CVE-2021-21129MEDIUMCVSS 6.5fixed in 88.0.705.502021-02-09
CVE-2021-21129 [MEDIUM] CVE-2021-21129: Insufficient policy enforcement in File System API in Google Chrome prior to 88.0.4324.96 allowed a
Insufficient policy enforcement in File System API in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to bypass filesystem restrictions via a crafted HTML page.
nvd
CVE-2020-16009HIGHCVSS 8.8KEVfixed in 86.0.4240.1832020-11-03
CVE-2020-16009 [HIGH] CWE-787 CVE-2020-16009: Inappropriate implementation in V8 in Google Chrome prior to 86.0.4240.183 allowed a remote attacker
Inappropriate implementation in V8 in Google Chrome prior to 86.0.4240.183 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
nvd
← Previous11 / 11