CVE-2021-30633
Google Chromium Indexed DB API Use-After-Free Vulnerability
CVSS
—
Sin CVSS
EPSS
32.7%
p98
KEV
SÍ
3 nov 2021
Exploit Today
79
0-100
Publicado: — · Última mod.: —
Producto
Google / Chromium Indexed DB API
Vulnerabilidad
Google Chromium Indexed DB API Use-After-Free Vulnerability
Añadido a KEV
3 nov 2021
Remediar antes de
17 nov 2021
Uso conocido en ransomware
No
Descripción resumida
Google Chromium Indexed DB API contains a use-after-free vulnerability that allows a remote attacker, who has compromised the renderer process, to potentially perform a sandbox escape via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.
Acción requerida
Apply updates per vendor instructions.
Notas
https://nvd.nist.gov/vuln/detail/CVE-2021-30633
Sin CVEs relacionados por CWE o producto.