CVE-2021-30602 — Vulnetix

Try Vulnetix Request Demo

CVE-2021-30602 PUBLISHED

Use after free in WebRTC in Google Chrome prior to 92.0.4515.159 allowed an attacker who convinced a user to visit a malicious website to potentially exploit heap corruption via a crafted HTML page.

EPSS 0.33% · 55.3th percentile

Risk Scores

EPSS Score

0.33%

55.3th percentile

Affected Products

Vendor	Product	Versions
Ubuntu:18.04:LTS	chromium-browser	61.0.3163.100-0ubuntu1.1378, 62.0.3202.62-0ubuntu0.17.10.1380, 62.0.3202.89-0ubuntu1.1386

Timeline

Aug 20, 2021 CVE Published
Aug 27, 2021 EPSS Score
Oct 24, 2021 EPSS Score
Dec 20, 2021 EPSS Score
Feb 4, 2022 EPSS Score
Feb 16, 2022 EPSS Score
Apr 1, 2022 EPSS Score
Apr 14, 2022 EPSS Score
Jun 11, 2022 EPSS Score
Oct 5, 2022 EPSS Score
Dec 1, 2022 EPSS Score
Jan 28, 2023 EPSS Score

References

https://ubuntu.com/security/CVE-2021-30602 third-party-advisory
https://crbug.com/1230767 third-party-advisory
https://chromereleases.googleblog.com/2021/08/stable-channel-update-for-desktop.html third-party-advisory
https://www.cve.org/CVERecord?id=CVE-2021-30602 third-party-advisory

Open in Interactive Console →