Lucene search

K
cvelistChromeCVELIST:CVE-2021-37997
HistoryNov 23, 2021 - 9:30 p.m.

CVE-2021-37997

2021-11-2321:30:22
Chrome
www.cve.org
6
google chrome
sign-in
use after free
heap corruption
cve-2021-37997

EPSS

0.008

Percentile

81.4%

Use after free in Sign-In in Google Chrome prior to 95.0.4638.69 allowed a remote attacker who convinced a user to sign into Chrome to potentially exploit heap corruption via a crafted HTML page.

CNA Affected

[
  {
    "product": "Chrome",
    "vendor": "Google",
    "versions": [
      {
        "lessThan": "95.0.4638.69",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]