This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.

Microsoft is aware of reports that exploits for CVE-2021-21220 exist in the wild.

attackerkb 1

githubexploit 1

alpinelinux 1

checkpoint_advisories 1

seebug 1

cve 1

ubuntucve 1

packetstorm 1

zdt 1

zdi 1

prion 1

veracode 1

cisa_kev 1

debiancve 1

nessus 7

suse 3

malwarebytes 2

kaspersky 3

freebsd 1

chrome 1

rapid7blog 1

thn 9

securelist 2

threatpost 2

fedora 3

photon 1

gentoo 1

qualysblog 2

attackerkb

CVE-2021-21220

2021-04-26 00:00:00

githubexploit

Exploit for Out-of-bounds Write in Google Chrome

2021-09-15 03:11:41

alpinelinux

CVE-2021-21220

2021-04-26 17:15:00

checkpoint_advisories

Google Chrome Remote Code Execution (CVE-2021-21220)

2021-05-10 00:00:00

seebug

Chrome 远程代码执行漏洞（CVE-2021-21220）

2021-04-13 00:00:00

cve

CVE-2021-21220

2021-04-26 17:15:00

ubuntucve

CVE-2021-21220

2021-04-26 00:00:00

packetstorm

Google Chrome XOR Typer Out-Of-Bounds Access / Remote Code Execution

2021-05-03 00:00:00

zdt

Google Chrome XOR Typer Out-Of-Bounds Access / Remote Code Execution Exploit

2021-05-04 00:00:00

zdi

(Pwn2Own) Google Chromium V8 XOR Typer Mismatch Out-Of-Bounds Access Remote Code Execution Vulnerability

2021-04-15 00:00:00

prion

Input validation

2021-04-26 17:15:00

veracode

Remote Code Execution (RCE)

2021-04-21 17:42:46

cisa_kev

Google Chromium V8 Improper Input Validation Vulnerability

2021-11-03 00:00:00

debiancve

CVE-2021-21220

2021-04-26 17:15:00

nessus

FreeBSD : chromium -- multiple vulnerabilities (7c0d71a9-9d48-11eb-97a0-e09467587c17)

2021-04-15 00:00:00

Google Chrome < 89.0.4389.128 Multiple Vulnerabilities

2021-04-13 00:00:00

Google Chrome < 89.0.4389.128 Multiple Vulnerabilities

2021-04-13 00:00:00

suse

Security update for chromium (critical)

2021-04-17 00:00:00

Security update for chromium (critical)

2021-04-19 00:00:00

Security update for opera (important)

2021-05-11 00:00:00

malwarebytes

Update now! Chrome needs patching against two in-the-wild exploits

2021-04-14 15:01:58

Update now! Google Chrome fixes two in-the-wild zero-days

2021-09-14 16:28:47

kaspersky

KLA12136 Multiple vulnerabilities in Google Chrome

2021-04-13 00:00:00

KLA12183 Multiple vulnerabilities in Opera

2021-04-20 00:00:00

KLA12143 Multiple vulnerabilities in Microsoft Browser

2021-04-14 00:00:00

freebsd

chromium -- multiple vulnerabilities

2021-04-13 00:00:00

chrome

Stable Channel Update for Desktop

2021-04-13 00:00:00

rapid7blog

Metasploit Wrap-Up

2021-05-07 19:41:01

thn

Update Your Chrome Browser ASAP to Patch a Week Old Public Exploit

2021-04-21 08:20:00

Update Your Chrome Browser to Patch 2 New In-the-Wild 0-Day Exploits

2021-04-14 05:48:00

Update Your Chrome Browser to Patch New Zero‑Day Bug Exploited in the Wild

2021-07-16 05:08:00

securelist

PuzzleMaker attacks with Chrome zero-day exploit chain

2021-06-08 17:32:30

IT threat evolution in Q2 2021. PC statistics

2021-08-12 10:00:12

threatpost

Pair of Google Chrome Zero-Day Bugs Actively Exploited

2021-09-14 15:03:41

Chrome Zero-Day Under Active Attack: Patch ASAP

2022-02-15 18:33:28

fedora

[SECURITY] Fedora 33 Update: chromium-90.0.4430.93-1.fc33

2021-05-14 21:12:29

[SECURITY] Fedora 32 Update: chromium-90.0.4430.93-1.fc32

2021-05-12 05:35:46

[SECURITY] Fedora 34 Update: chromium-90.0.4430.93-1.fc34

2021-05-12 05:44:40

photon

Critical Photon OS Security Update - PHSA-2023-3.0-0602

2023-06-21 00:00:00

gentoo

Chromium, Google Chrome: Multiple vulnerabilities

2021-04-30 00:00:00

qualysblog

Qualys Response to CISA Alert: Binding Operational Directive 22-01

2021-11-09 06:15:01

Managing CISA Known Exploited Vulnerabilities with Qualys VMDR

2022-02-23 05:39:00

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.97 High

EPSS

Percentile

99.7%

JSON

Related for MS:CVE-2021-21220