CVE-2021-21223 - log back

CVE-2021-21223 edited at 26 Apr 2021 21:03:18
Type
- Arbitrary code execution
+ Sandbox escape
Description
- An integer overflow security issue has been found in the Mojo component of the Chromium browser before version 90.0.4430.85.
+ Integer overflow in Mojo in Google Chrome prior to 90.0.4430.85 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.
References
https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_20.html
https://crbug.com/1195308
Notes
CVE-2021-21223 edited at 20 Apr 2021 19:55:50
Severity
- Unknown
+ High
Remote
- Unknown
+ Remote
Type
- Unknown
+ Arbitrary code execution
Description
+ An integer overflow security issue has been found in the Mojo component of the Chromium browser before version 90.0.4430.85.
References
+ https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_20.html
+ https://crbug.com/1195308
CVE-2021-21223 created at 20 Apr 2021 19:53:54