Description
Use after free in site isolation in Google Chrome prior to 86.0.4240.198 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.
Remediation
References
https://chromereleases.googleblog.com/2020/11/stable-channel-update-for-desktop_11.html
https://crbug.com/1146709
Related Vulnerabilities
CVE-2022-31018 Vulnerability in maven package com.typesafe.play:play_2.13
CVE-2022-43430 Vulnerability in maven package com.compuware.jenkins:compuware-topaz-for-total-test
CVE-2023-29208 Vulnerability in maven package org.xwiki.platform:xwiki-platform-oldcore
CVE-2021-45105 Vulnerability in maven package org.apache.logging.log4j:log4j-core
CVE-2023-27602 Vulnerability in maven package org.apache.linkis:linkis-storage-script-dev-server