Msrc Microsoft Edge vulnerabilities

CVE-2021-21179 [HIGH] Chromium CVE-2021-21179: Use after free in Network Internals Chromium CVE-2021-21179: Use after free in Network Internals Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed

CVE-2021-21188 [HIGH] Chromium CVE-2021-21188: Use after free in Blink Chromium CVE-2021-21188: Use after free in Blink Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chro

CVE-2021-21193 [HIGH] Chromium CVE-2021-21193: Use after free in Blink Chromium CVE-2021-21193: Use after free in Blink Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. This CVE has been reported to be exploited in the wild. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 89.0.774.54

CVE-2021-21167 [HIGH] Chromium CVE-2021-21167: Use after free in bookmarks Chromium CVE-2021-21167: Use after free in bookmarks Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Ed

CVE-2021-21160 [HIGH] Chromium CVE-2021-21160: Heap buffer overflow in WebAudio Chromium CVE-2021-21160: Heap buffer overflow in WebAudio Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Mic

CVE-2021-21165 [HIGH] Chromium CVE-2021-21165: Object lifecycle issue in audio Chromium CVE-2021-21165: Object lifecycle issue in audio Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Micr

CVE-2021-21192 [HIGH] Chromium CVE-2021-21192: Heap buffer overflow in tab groups Chromium CVE-2021-21192: Heap buffer overflow in tab groups Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 89.0.774.54 3/13/2021 89.0.4389.90 FAQ: Why

CVE-2021-21169 [HIGH] Chromium CVE-2021-21169: Out of bounds memory access in V8 Chromium CVE-2021-21169: Out of bounds memory access in V8 Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by

CVE-2021-21172 [HIGH] Chromium CVE-2021-21172: Insufficient policy enforcement in File System API Chromium CVE-2021-21172: Insufficient policy enforcement in File System API Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source So

CVE-2021-21180 [HIGH] Chromium CVE-2021-21180: Use after free in tab search Chromium CVE-2021-21180: Use after free in tab search Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft

CVE-2021-26411 [HIGH] Internet Explorer Memory Corruption Vulnerability Internet Explorer Memory Corruption Vulnerability FAQ: How could an attacker exploit the vulnerability? An attacker could host a specially crafted website designed to exploit the vulnerability through Internet Explorer and then convince a user to view the website. The attacker could also take advantage of compromised websites, or websites that accept or host user-provided content or advertisements, by adding specially craft

CVE-2021-21159 [HIGH] Chromium CVE-2021-21159: Heap buffer overflow in TabStrip Chromium CVE-2021-21159: Heap buffer overflow in TabStrip Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Mic

CVE-2021-21171 [MEDIUM] Chromium CVE-2021-21171: Incorrect security UI in TabStrip and Navigation Chromium CVE-2021-21171: Incorrect security UI in TabStrip and Navigation Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Soft

CVE-2021-21182 [MEDIUM] Chromium CVE-2021-21182: Insufficient policy enforcement in navigations Chromium CVE-2021-21182: Insufficient policy enforcement in navigations Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software

CVE-2021-21170 [MEDIUM] Chromium CVE-2021-21170: Incorrect security UI in Loader Chromium CVE-2021-21170: Incorrect security UI in Loader Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Mi

CVE-2021-21183 [MEDIUM] Chromium CVE-2021-21183: Inappropriate implementation in performance APIs Chromium CVE-2021-21183: Inappropriate implementation in performance APIs Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Soft

CVE-2021-21178 [MEDIUM] Chromium CVE-2021-21178 : Inappropriate implementation in Compositing Chromium CVE-2021-21178 : Inappropriate implementation in Compositing Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OS

CVE-2021-21163 [MEDIUM] Chromium CVE-2021-21163: Insufficient data validation in Reader Mode Chromium CVE-2021-21163: Insufficient data validation in Reader Mode Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS)

CVE-2021-21164 [MEDIUM] Chromium CVE-2021-21164: Insufficient data validation in Chrome for iOS Chromium CVE-2021-21164: Insufficient data validation in Chrome for iOS Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software

CVE-2021-21189 [MEDIUM] Chromium CVE-2021-21189: Insufficient policy enforcement in payments Chromium CVE-2021-21189: Insufficient policy enforcement in payments Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS)