CVE-2021-21106
Description
Use after free in autofill in Google Chrome prior to 87.0.4280.141 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.
- CVSS Version 3.1
- CVSS Version 2.0
nvd
CVE ID: CVE-2021-21106
Base Score: 9.6
Base Severity: CRITICAL
Vector String:CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
Impact Score: 6.0
Exploitability Score: 2.8
nvd
CVE ID: CVE-2021-21106
Base Score: 9.3
Base Severity: HIGH
Vector String:AV:N/AC:M/Au:N/C:C/I:C/A:C
Refrence: NVD