VDB
CVE-2021-4102
CVE-2021-4102
PUBLISHED
KEV
CVSS 6.800000190734863 MEDIUM
Use after free in V8 in Google Chrome prior to 96.0.4664.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
EPSS 5.46% · 90.4th percentile
Risk Scores
CVSS 2.0
6.800000190734863
EPSS Score
5.46%
90.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Chrome | unspecified, unspecified | |
| chrome | 0, 0, 0 |
Timeline
- Dec 9, 2021 VulnCheck KEV Exploitation
- Dec 13, 2021 PoC Published
- Dec 14, 2021 PoC Published
- Dec 15, 2021 CISA KEV Added
- Dec 15, 2021 PoC Published
- Dec 20, 2021 CVE Published
- Feb 13, 2022 EPSS Score
- May 29, 2022 EPSS Score
- Jul 21, 2022 EPSS Score
- Nov 2, 2022 EPSS Score
- Feb 15, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
References
- https://chromereleases.googleblog.com/2021/12/stable-channel-update-for-desktop_13.html url
- https://crbug.com/1278387 url
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-4102 url
- https://nvd.nist.gov/vuln/detail/CVE-2021-4102 advisory
- https://msrc.microsoft.com/update-guide/ advisory
- https://crbug.com/1263457 url