Rewterz Threat Advisory – Juniper Networks Junos OS Multiple Vulnerabilities
April 16, 2021Rewterz Threat Alert – Active FBR Malicious Attachments Email Campaign
April 17, 2021Rewterz Threat Advisory – Juniper Networks Junos OS Multiple Vulnerabilities
April 16, 2021Rewterz Threat Alert – Active FBR Malicious Attachments Email Campaign
April 17, 2021Severity
Medium
Analysis Summary
CVE-2021-21216
The Google Chrome Autofill vulnerability allows remote attackers to bypass security restrictions and gain access to sensitive information. This attack is caused by inappropriate implementation in the Autofill function. The attacker can create specially crafted websites that lure the victims into visiting them and exploit this vulnerability to gain access to sensitive information.
CVE-2021-21215
The Google Chrome Autofill vulnerability allows remote attackers to bypass security restrictions and gain access to sensitive information. This attack is caused by inappropriate implementation in the Autofill function. The attacker can create specially crafted websites that lure the victims into visiting them and exploit this vulnerability to gain access to sensitive information.
CVE-2021-21212
The Google Chrome Network Config UI vulnerability remote attackers to bypass security restrictions and perform a spoofing attack. This attack is caused by incorrect security UI and insufficient validation of user-supplied input in Network Config UI. The remote attacker can create specially crafted websites that lure the victims into visiting them and exploit this vulnerability to gain access to sensitive information.
Impact
Security bypass spoofing
Affected Vendors
Affected Products
Google Chrome 90
Remediation
Upgrade to the latest version of Chome (90.0.4430.72 or later), available at the Google Chrome website. Or find more information at https://chromereleases.googleblog.com/