CISA Known Exploited Vulnerability

This vulnerability is actively exploited in the wild and listed in the CISA Known Exploited Vulnerabilities catalog.

Remediation Deadline: Dec 29, 2021

High

CISA KEV

CVE-2021-4102

Google—Chromium V8

Google Chromium V8 Engine contains a use-after-free vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.

Required Action

https://nvd.nist.gov/vuln/detail/CVE-2021-4102

Vulnerability Overview

Severity: High
CISA KEV: Yes
Ransomware: Unknown
Published: Dec 15, 2021
KEV Added: Dec 15, 2021
Due Date: Dec 29, 2021
Related Articles: 0

Vendor

Google

Chromium V8