Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2021-08-03	CVE-2021-30580	Insufficient policy enforcement in Android intents in Google Chrome prior to 92.0.4515.107 allowed an attacker who convinced a user to install a malicious application to obtain potentially sensitive information via a crafted HTML page. network low complexity google fedoraproject	6.5
2021-08-03	CVE-2021-30582	Inappropriate implementation in Animation in Google Chrome prior to 92.0.4515.107 allowed a remote attacker to leak cross-origin data via a crafted HTML page. network low complexity google fedoraproject	6.5
2021-08-03	CVE-2021-30583	Insufficient policy enforcement in image handling in iOS in Google Chrome on iOS prior to 92.0.4515.107 allowed a remote attacker to leak cross-origin data via a crafted HTML page. network low complexity google fedoraproject	6.5
2021-08-03	CVE-2021-30584	Incorrect security UI in Downloads in Google Chrome on Android prior to 92.0.4515.107 allowed a remote attacker to perform domain spoofing via a crafted HTML page. network low complexity google fedoraproject	6.5
2021-08-03	CVE-2021-30587	Inappropriate implementation in Compositing in Google Chrome prior to 92.0.4515.107 allowed a remote attacker to potentially spoof the contents of the Omnibox (URL bar) via a crafted HTML page. network low complexity google fedoraproject	4.3
2021-08-03	CVE-2021-30589	Improper Encoding or Escaping of Output vulnerability in multiple products Insufficient validation of untrusted input in Sharing in Google Chrome prior to 92.0.4515.107 allowed a remote attacker to bypass navigation restrictions via a crafted click-to-call link. network low complexity google fedoraproject CWE-116	4.3
2021-08-02	CVE-2021-34556	Information Exposure Through Discrepancy vulnerability in multiple products In the Linux kernel through 5.13.7, an unprivileged BPF program can obtain sensitive information from kernel memory via a Speculative Store Bypass side-channel attack because the protection mechanism neglects the possibility of uninitialized memory locations on the BPF stack. local low complexity linux fedoraproject debian CWE-203	5.5
2021-08-02	CVE-2021-35477	Information Exposure Through Discrepancy vulnerability in multiple products In the Linux kernel through 5.13.7, an unprivileged BPF program can obtain sensitive information from kernel memory via a Speculative Store Bypass side-channel attack because a certain preempting store operation does not necessarily occur before a store operation that has an attacker-controlled value. local low complexity linux debian fedoraproject CWE-203	5.5
2021-07-30	CVE-2021-37746	Open Redirect vulnerability in multiple products textview_uri_security_check in textview.c in Claws Mail before 3.18.0, and Sylpheed through 3.7.0, does not have sufficient link checks before accepting a click. network low complexity claws-mail sylpheed-project fedoraproject CWE-601	6.1
2021-07-28	CVE-2021-23414	Cross-site Scripting vulnerability in multiple products This affects the package video.js before 7.14.3. network low complexity videojs fedoraproject CWE-79	6.1