CVE-2021-21224 — Vulnetix

Try Vulnetix Request Demo

CVE-2021-21224 PUBLISHED KEV

Type confusion in V8 in Google Chrome prior to 90.0.4430.85 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.

EPSS 53.40% · 98.0th percentile

Risk Scores

EPSS Score

53.40%

98.0th percentile

Affected Products

Vendor	Product	Versions
Ubuntu:18.04:LTS	chromium-browser	0, 62.0.3202.62-0ubuntu0.17.10.1380, 62.0.3202.89-0ubuntu1.1386

Timeline

Jan 20, 1970 VulnCheck XDB Entry
Jan 20, 1970 VulnCheck XDB Entry
Jan 20, 1970 VulnCheck XDB Entry
Jan 20, 1970 VulnCheck XDB Entry
Jan 20, 1970 VulnCheck XDB Entry
Jan 21, 1970 VulnCheck XDB Entry
Apr 21, 2021 CVE Published
Apr 21, 2021 PoC Published
Apr 27, 2021 EPSS Score
Jun 8, 2021 VulnCheck KEV Exploitation
Jun 10, 2021 PoC Published
Nov 3, 2021 CISA KEV Added

References

https://ubuntu.com/security/CVE-2021-21224 third-party-advisory
https://www.cve.org/CVERecord?id=CVE-2021-21224 third-party-advisory
https://www.cisa.gov/known-exploited-vulnerabilities-catalog third-party-advisory

Open in Interactive Console →