CVE-2021-30558 — Vulnetix

Try Vulnetix Request Demo

CVE-2021-30558 PUBLISHED

Insufficient policy enforcement in content security policy in Google Chrome prior to 91.0.4472.77 allowed a remote attacker to bypass content security policy via a crafted HTML page. (Chrome security severity: Medium)

EPSS 0.21% · 42.9th percentile

Risk Scores

EPSS Score

0.21%

42.9th percentile

Affected Products

Vendor	Product	Versions
Ubuntu:18.04:LTS	chromium-browser	0, 61.0.3163.100-0ubuntu1.1378, 62.0.3202.62-0ubuntu0.17.10.1380

Timeline

Jan 2, 2023 CVE Published
Jan 3, 2023 EPSS Score
Feb 13, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 25, 2023 EPSS Score
May 5, 2023 EPSS Score
Jun 14, 2023 EPSS Score
Jul 25, 2023 EPSS Score
Sep 3, 2023 EPSS Score
Oct 14, 2023 EPSS Score
Nov 23, 2023 EPSS Score
Jan 3, 2024 EPSS Score

References

https://ubuntu.com/security/CVE-2021-30558 third-party-advisory
https://crbug.com/916326 third-party-advisory
https://chromereleases.googleblog.com/2021/05/stable-channel-update-for-desktop_25.html third-party-advisory
https://www.cve.org/CVERecord?id=CVE-2021-30558 third-party-advisory

Open in Interactive Console →