CVE-2021-21211

Medium

Inappropriate implementation in Navigation in Google Chrome on iOS prior to 90.0.4430.72 allowed a remote attacker to leak cross-origin…

Chrome·CWE-346·Published 2021-04-26

CVSS

6.5

EPSS

0.01

KEV

Exploits

cve.orgen

165 chars

Inappropriate implementation in Navigation in Google Chrome on iOS prior to 90.0.4430.72 allowed a remote attacker to leak cross-origin data via a crafted HTML page.

NVDen

165 chars

Inappropriate implementation in Navigation in Google Chrome on iOS prior to 90.0.4430.72 allowed a remote attacker to leak cross-origin data via a crafted HTML page.

NVDes

205 chars

Una implementación inapropiada en Navigation en Google Chrome en iOS versiones anteriores a 90.0.4430.72, permitió a un atacante remoto filtrar datos de origen cruzado por medio de una página HTML diseñada

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	4.3	8.6	2.9	AV:N/AC:M/Au:N/C:P/I:N/A:N
3.1	Primary	NVD	6.5	2.8	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N