VDB

CVE-2021-37976

CVE-2021-37976 PUBLISHED CVSS 6.5 MEDIUM

Reported by Chrome · Published October 8, 2021

Inappropriate implementation in Memory in Google Chrome prior to 94.0.4606.71 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page.

Risk Scores

CVSS 3.1
6.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Affected Products

VendorProductVersions
GoogleChromeunspecified
GoogleChrome*

Timeline

  • Sep 30, 2021 PoC Published
  • Oct 8, 2021 CVE Published
  • Oct 9, 2021 EPSS Score
  • Nov 3, 2021 CISA KEV Added
  • Jan 6, 2022 EPSS Score
  • Feb 4, 2022 EPSS Score
  • Apr 1, 2022 EPSS Score
  • Mar 7, 2023 EPSS Score
  • Mar 22, 2024 EPSS Score
  • May 14, 2024 EPSS Score
  • Jul 27, 2024 EPSS Score
  • Dec 17, 2024 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›