Msrc Microsoft Edge vulnerabilities

CVE-2021-37990 [MEDIUM] Chromium: CVE-2021-37990 Inappropriate implementation in WebView Chromium: CVE-2021-37990 Inappropriate implementation in WebView Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 95.0.1020.30 10/21/2021 95.0.4638

CVE-2021-37976 [MEDIUM] Chromium: CVE-2021-37976 Information leak in core Chromium: CVE-2021-37976 Information leak in core Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. This vulnerability is known to be exploited in the wild. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 94.0.99

CVE-2021-37989 [MEDIUM] Chromium: CVE-2021-37989 Inappropriate implementation in Blink Chromium: CVE-2021-37989 Inappropriate implementation in Blink Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 95.0.1020.30 10/21/2021 95.0.4638.54

CVE-2021-37973 [CRITICAL] Chromium: CVE-2021-37973 Use after free in Portals Chromium: CVE-2021-37973 Use after free in Portals Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. Google is aware that an exploit for CVE-2021-37973 exists in the wild. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromiu

CVE-2021-30633 [CRITICAL] Chromium: CVE-2021-30633 Use after free in Indexed DB API Chromium: CVE-2021-30633 Use after free in Indexed DB API Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 93.0.961.52 9/16/2021 93.0.4577.82 FAQ: Why

CVE-2021-37956 [HIGH] Chromium: CVE-2021-37956 Use after free in Offline use Chromium: CVE-2021-37956 Use after free in Offline use Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 94.0.992.31 9/24/2021 94.0.4606.54 FAQ: Why is this Ch

CVE-2021-30614 [HIGH] Chromium: CVE-2021-30614 Heap buffer overflow in TabStrip Chromium: CVE-2021-30614 Heap buffer overflow in TabStrip Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? | Microsoft Edge Version | Date Released | Based on Chromium Version | | ----- | ----- | ----- | | 93.0.961.38 | 9/2/

CVE-2021-37961 [HIGH] Chromium: CVE-2021-37961 Use after free in Tab Strip Chromium: CVE-2021-37961 Use after free in Tab Strip Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 94.0.992.31 9/24/2021 94.0.4606.54 FAQ: Why is this Chrom

CVE-2021-30626 [HIGH] Chromium: CVE-2021-30626 Out of bounds memory access in ANGLE Chromium: CVE-2021-30626 Out of bounds memory access in ANGLE Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 93.0.961.52 9/16/2021 93.0.4577.82 FAQ:

CVE-2021-30609 [HIGH] Chromium: CVE-2021-30609 Use after free in Sign-In Chromium: CVE-2021-30609 Use after free in Sign-In Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? | Microsoft Edge Version | Date Released | Based on Chromium Version | | ----- | ----- | ----- | | 93.0.961.38 | 9/2/2021 | 93.0.45

CVE-2021-30625 [HIGH] Chromium: CVE-2021-30625 Use after free in Selection API Chromium: CVE-2021-30625 Use after free in Selection API Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 93.0.961.52 9/16/2021 93.0.4577.82 FAQ: Why is thi

CVE-2021-30632 [HIGH] Chromium: CVE-2021-30632 Out of bounds write in V8 Chromium: CVE-2021-30632 Out of bounds write in V8 Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (C

CVE-2021-30618 [HIGH] Chromium: CVE-2021-30618 Inappropriate implementation in DevTools Chromium: CVE-2021-30618 Inappropriate implementation in DevTools Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? | Microsoft Edge Version | Date Released | Based on Chromium Version | | ----- | ----- | ----- | | 93

CVE-2021-37972 [HIGH] Chromium: CVE-2021-37972 Out of bounds read in libjpeg-turbo Chromium: CVE-2021-37972 Out of bounds read in libjpeg-turbo Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 94.0.992.31 9/24/2021 94.0.4606.54 FAQ: Wh

CVE-2021-30628 [HIGH] Chromium: CVE-2021-30628 Stack buffer overflow in ANGLE Chromium: CVE-2021-30628 Stack buffer overflow in ANGLE Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 93.0.961.52 9/16/2021 93.0.4577.82 FAQ: Why is this

CVE-2021-37959 [HIGH] Chromium: CVE-2021-37959 Use after free in Task Manager Chromium: CVE-2021-37959 Use after free in Task Manager Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 94.0.992.31 9/24/2021 94.0.4606.54 FAQ: Why is this

CVE-2021-30606 [HIGH] Chromium: CVE-2021-30606 Use after free in Blink Chromium: CVE-2021-30606 Use after free in Blink Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? | Microsoft Edge Version | Date Released | Based on Chromium Version | | ----- | ----- | ----- | | 93.0.961.38 | 9/2/2021 | 93.0.4577.6

CVE-2021-30613 [HIGH] Chromium: CVE-2021-30613 Use after free in Base internals Chromium: CVE-2021-30613 Use after free in Base internals Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? | Microsoft Edge Version | Date Released | Based on Chromium Version | | ----- | ----- | ----- | | 93.0.961.38 | 9/2/

CVE-2021-30620 [HIGH] Chromium: CVE-2021-30620 Insufficient policy enforcement in Blink Chromium: CVE-2021-30620 Insufficient policy enforcement in Blink Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? | Microsoft Edge Version | Date Released | Based on Chromium Version | | ----- | ----- | ----- | | 93

CVE-2021-37969 [HIGH] Chromium: CVE-2021-37969 Inappropriate implementation in Google Updater Chromium: CVE-2021-37969 Inappropriate implementation in Google Updater Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 94.0.992.31 9/24/2021