Search

Find a vulnerability

Search criteria Use this form to refine search results.
Full-text search supports keyword queries with ranking and filtering.
You can combine vendor, product, and sources to narrow results.
Enable “Apply ordering” to sort by date instead of relevance.

    2 vulnerabilities found for chrome_os_readiness_tool by google

    CVE-2021-30605 (GCVE-0-2021-30605)

    Vulnerability from cvelistv5 – Published: 2021-09-08 20:35 – Updated: 2024-08-03 22:40
    VLAI
    Summary
    Inappropriate implementation in the ChromeOS Readiness Tool installer on Windows prior to 1.0.2.0 loosens DCOM access rights on two objects allowing an attacker to potentially bypass discretionary access controls.
    Severity
    No CVSS data available.
    CWE
    • Inappropriate implementation
    Assigner
    References
    URL Tags
    https://crbug.com/1240952 x_refsource_MISC
    https://bit.ly/37CS6G9 x_refsource_MISC
    Impacted products
    Vendor Product Version
    Google Chrome Affected: unspecified , < 1.0.2.0 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T22:40:30.920Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://crbug.com/1240952"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://bit.ly/37CS6G9"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Chrome",
              "vendor": "Google",
              "versions": [
                {
                  "lessThan": "1.0.2.0",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Inappropriate implementation in the ChromeOS Readiness Tool installer on Windows prior to 1.0.2.0 loosens DCOM access rights on two objects allowing an attacker to potentially bypass discretionary access controls."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Inappropriate implementation",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2021-09-08T20:35:16.000Z",
            "orgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28",
            "shortName": "Chrome"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://crbug.com/1240952"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://bit.ly/37CS6G9"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "chrome-cve-admin@google.com",
              "ID": "CVE-2021-30605",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Chrome",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_value": "1.0.2.0"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Google"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Inappropriate implementation in the ChromeOS Readiness Tool installer on Windows prior to 1.0.2.0 loosens DCOM access rights on two objects allowing an attacker to potentially bypass discretionary access controls."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Inappropriate implementation"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://crbug.com/1240952",
                  "refsource": "MISC",
                  "url": "https://crbug.com/1240952"
                },
                {
                  "name": "https://bit.ly/37CS6G9",
                  "refsource": "MISC",
                  "url": "https://bit.ly/37CS6G9"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28",
        "assignerShortName": "Chrome",
        "cveId": "CVE-2021-30605",
        "datePublished": "2021-09-08T20:35:16.000Z",
        "dateReserved": "2021-04-13T00:00:00.000Z",
        "dateUpdated": "2024-08-03T22:40:30.920Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-30605 (GCVE-0-2021-30605)

    Vulnerability from nvd – Published: 2021-09-08 20:35 – Updated: 2024-08-03 22:40
    VLAI
    Summary
    Inappropriate implementation in the ChromeOS Readiness Tool installer on Windows prior to 1.0.2.0 loosens DCOM access rights on two objects allowing an attacker to potentially bypass discretionary access controls.
    Severity
    No CVSS data available.
    CWE
    • Inappropriate implementation
    Assigner
    References
    URL Tags
    https://crbug.com/1240952 x_refsource_MISC
    https://bit.ly/37CS6G9 x_refsource_MISC
    Impacted products
    Vendor Product Version
    Google Chrome Affected: unspecified , < 1.0.2.0 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T22:40:30.920Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://crbug.com/1240952"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://bit.ly/37CS6G9"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Chrome",
              "vendor": "Google",
              "versions": [
                {
                  "lessThan": "1.0.2.0",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Inappropriate implementation in the ChromeOS Readiness Tool installer on Windows prior to 1.0.2.0 loosens DCOM access rights on two objects allowing an attacker to potentially bypass discretionary access controls."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Inappropriate implementation",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2021-09-08T20:35:16.000Z",
            "orgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28",
            "shortName": "Chrome"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://crbug.com/1240952"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://bit.ly/37CS6G9"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "chrome-cve-admin@google.com",
              "ID": "CVE-2021-30605",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Chrome",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_value": "1.0.2.0"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Google"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Inappropriate implementation in the ChromeOS Readiness Tool installer on Windows prior to 1.0.2.0 loosens DCOM access rights on two objects allowing an attacker to potentially bypass discretionary access controls."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Inappropriate implementation"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://crbug.com/1240952",
                  "refsource": "MISC",
                  "url": "https://crbug.com/1240952"
                },
                {
                  "name": "https://bit.ly/37CS6G9",
                  "refsource": "MISC",
                  "url": "https://bit.ly/37CS6G9"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28",
        "assignerShortName": "Chrome",
        "cveId": "CVE-2021-30605",
        "datePublished": "2021-09-08T20:35:16.000Z",
        "dateReserved": "2021-04-13T00:00:00.000Z",
        "dateUpdated": "2024-08-03T22:40:30.920Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }