Google Chrome prior 89.0.4389.72 PDFium uninitialized pointer

EntryeditHistoryDiffjsonxmlCTI

A vulnerability has been found in Google Chrome (Web Browser) and classified as critical. Affected by this vulnerability is an unknown functionality of the component PDFium. Upgrading to version 89.0.4389.72 eliminates this vulnerability.

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

User

Field

Commit Conf

Approve Conf

IDCommitedUserFieldChangeRemarksModeratedReasonC
1106265203/28/2021VulD...cvss3_nvd_basescore8.8nist.gov03/28/2021accepted90
1106265103/28/2021VulD...cvss2_nvd_basescore6.8nist.gov03/28/2021accepted90
1106265003/28/2021VulD...cvss3_meta_tempscore7.2see documentation03/28/2021accepted90
1106264903/28/2021VulD...cvss3_meta_basescore7.5see documentation03/28/2021accepted90
1106264803/28/2021VulD...cvss2_nvd_aiPnvd.nist.gov03/28/2021accepted70
1106264703/28/2021VulD...cvss2_nvd_iiPnvd.nist.gov03/28/2021accepted70
1106264603/28/2021VulD...cvss2_nvd_ciPnvd.nist.gov03/28/2021accepted70
1106264503/28/2021VulD...cvss2_nvd_auNnvd.nist.gov03/28/2021accepted70
1106264403/28/2021VulD...cvss2_nvd_acMnvd.nist.gov03/28/2021accepted70
1106264303/28/2021VulD...cvss2_nvd_avNnvd.nist.gov03/28/2021accepted70
1106264203/28/2021VulD...cvss3_nvd_aHnvd.nist.gov03/28/2021accepted70
1106264103/28/2021VulD...cvss3_nvd_iHnvd.nist.gov03/28/2021accepted70
1106264003/28/2021VulD...cvss3_nvd_cHnvd.nist.gov03/28/2021accepted70
1106263903/28/2021VulD...cvss3_nvd_sUnvd.nist.gov03/28/2021accepted70
1106263803/28/2021VulD...cvss3_nvd_uiRnvd.nist.gov03/28/2021accepted70
1106263703/28/2021VulD...cvss3_nvd_prNnvd.nist.gov03/28/2021accepted70
1106263603/28/2021VulD...cvss3_nvd_acLnvd.nist.gov03/28/2021accepted70
1106263503/28/2021VulD...cvss3_nvd_avNnvd.nist.gov03/28/2021accepted70
1106263403/28/2021VulD...cve_nvd_summaryUninitialized data in PDFium in Google Chrome prior to 89.0.4389.72 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted PDF file.cve.mitre.org03/28/2021accepted70
1100693803/07/2021VulD...cvss3_meta_tempscore6.0see documentation03/07/2021accepted90

Do you know our Splunk app?

Download it now for free!