Published threat advisories for October 8, 2021

A vulnerability in Google Chrome's memory handling could allow attackers to access sensitive information from process memory via a crafted webpage. This impacts organizations using affected Chrome versions and exposes them to potential data breaches. Prompt application of vendor updates is recommended.

NVD published: October 8, 2021 • CISA KEV

A vulnerability in Google Chrome's V8 engine could allow remote attackers to corrupt memory via a crafted HTML page. This may lead to system compromise and data loss. Organizations using affected versions should update their software promptly.

NVD published: October 8, 2021 • CISA KEV

A memory management flaw in Google Chrome's Portals feature could allow a remote attacker to escape the browser's sandbox. This may result in unauthorized system access or data compromise. Affected organizations face business risk if employees interact with malicious web pages.

NVD published: October 8, 2021 • CISA KEV

A vulnerability in Google Chrome's Indexed DB API could allow an attacker with renderer process control to escape the browser sandbox via a crafted HTML page. This impacts organizations using affected Chrome versions by posing a risk of unauthorized system access and data compromise. Organizations should update Chrome

NVD published: October 8, 2021 • CISA KEV

A Google Chrome V8 engine vulnerability allows attackers to corrupt memory via crafted web pages, potentially leading to code execution and system compromise. This impacts organizations, employees, and data.

NVD published: October 8, 2021 • CISA KEV