Kaspersky ID:
KLA12296
Дата обнаружения:
16/09/2021
Обновлено:
22/01/2024

Описание

Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions, obtain sensitive information.

Below is a complete list of vulnerabilities:

  1. Stack buffer overflow vulnerability in ANGLE can be exploited to cause denial of service or execute arbitrary code.
  2. Use after free vulnerability in Indexed DB API can be exploited to cause denial of service or execute arbitrary code.
  3. Implementation vulnerability in Blink can be exploited to cause denial of service.
  4. Use after free vulnerability in Permissions can be exploited to cause denial of service or execute arbitrary code.
  5. Type confusion vulnerability in Blink layout can be exploited to cause denial of service.
  6. Out of bounds memory access vulnerability in ANGLE can be exploited to cause denial of service, execute arbitrary code or obtain sensitive information.
  7. Use after free vulnerability in Selection API can be exploited to cause denial of service or execute arbitrary code.

Первичный источник обнаружения

Эксплуатация

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Связанные продукты

Список CVE

  • CVE-2021-30628
    high
  • CVE-2021-30633
    high
  • CVE-2021-30630
    warning
  • CVE-2021-30629
    high
  • CVE-2021-30627
    high
  • CVE-2021-30626
    high
  • CVE-2021-30625
    high

Список KB

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com

Нашли неточность в описании этой уязвимости? Дайте нам знать!
Узнай больше об угрозах и векторах атаки на Энциклопедии Kaspersky
Бесплатно
Читать
Kaspersky Premium
Комплексное решение для защиты вашей цифровой жизни
Премиум
Скачать
Confirm changes?
Your message has been sent successfully.