Msrc Microsoft Edge vulnerabilities

CVE-2021-21157 [HIGH] Chromium CVE-2021-21157: Use after free in Web Sockets Chromium CVE-2021-21157: Use after free in Web Sockets Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 88.0.705.74 2/17/2021 88.0.4324.182 FAQ: Why is this C

CVE-2021-21144 [HIGH] Chromium CVE-2021-21144: Heap buffer overflow in Tab Groups Chromium CVE-2021-21144: Heap buffer overflow in Tab Groups Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by

CVE-2021-21145 [HIGH] Chromium CVE-2021-21145: Use after free in Fonts Chromium CVE-2021-21145: Use after free in Fonts Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chrom

CVE-2021-21149 [HIGH] Chromium CVE-2021-21149: Stack overflow in Data Transfer Chromium CVE-2021-21149: Stack overflow in Data Transfer Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 88.0.705.74 2/17/2021 88.0.4324.182 FAQ: Why is th

CVE-2021-21153 [HIGH] Chromium: CVE-2021-21153 Stack overflow in GPU Process Chromium: CVE-2021-21153 Stack overflow in GPU Process Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 88.0.705.74 2/17/2021 88.0.4324.182 FAQ: Why is this C

CVE-2021-21147 [MEDIUM] Chromium CVE-2021-21147: Inappropriate implementation in Skia Chromium CVE-2021-21147: Inappropriate implementation in Skia Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consu

CVE-2021-24113 [MEDIUM] Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 88.0.705.62 2/4/2021 88.0.4324.146 FAQ: What kind of security feature could be bypassed by successfully exploiting this vulnerability? This vulnerability allows javascript to be executed in URL when copying then

CVE-2021-21121 [CRITICAL] Chromium CVE-2021-21121: Use after free in Omnibox Chromium CVE-2021-21121: Use after free in Omnibox Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edg

CVE-2021-21124 [CRITICAL] Chromium CVE-2021-21124: Potential user after free in Speech Recognizer Chromium CVE-2021-21124: Potential user after free in Speech Recognizer Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Softwar

CVE-2021-21132 [CRITICAL] Chromium CVE-2021-21132: Inappropriate implementation in DevTools Chromium CVE-2021-21132: Inappropriate implementation in DevTools Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) whic

CVE-2021-21120 [HIGH] Chromium CVE-2021-21120: Use after free in WebSQL Chromium CVE-2021-21120: Use after free in WebSQL Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chr

CVE-2021-21128 [HIGH] Chromium CVE-2021-21128: Heap buffer overflow in Blink Chromium CVE-2021-21128: Heap buffer overflow in Blink Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft

CVE-2021-21125 [HIGH] Chromium CVE-2021-21125: Insufficient policy enforcement in File System API Chromium CVE-2021-21125: Insufficient policy enforcement in File System API Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Sof

CVE-2020-16044 [HIGH] Chromium CVE-2020-16044: Use after free in WebRTC Chromium CVE-2020-16044: Use after free in WebRTC Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chr

CVE-2021-21127 [HIGH] Chromium CVE-2021-21127: Insufficient policy enforcement in extensions Chromium CVE-2021-21127: Insufficient policy enforcement in extensions Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS

CVE-2021-21118 [HIGH] Chromium: CVE-2021-21118 Insufficient data validation in V8 Chromium: CVE-2021-21118 Insufficient data validation in V8 Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by

CVE-2021-21119 [HIGH] Chromium CVE-2021-21119: Use after free in Media Chromium CVE-2021-21119: Use after free in Media Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chrom

CVE-2021-21122 [HIGH] Chromium CVE-2021-21122: Use after free in Blink Chromium CVE-2021-21122: Use after free in Blink Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chrom

CVE-2021-21139 [MEDIUM] Chromium CVE-2021-21139: Inappropriate implementation in iframe sandbox Chromium CVE-2021-21139: Inappropriate implementation in iframe sandbox Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software

CVE-2021-21123 [MEDIUM] Chromium CVE-2021-21123: Insufficient data validation in File System API Chromium CVE-2021-21123: Insufficient data validation in File System API Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Softwar