← ExploitWatch
HomeExploited Vulnerabilities

CVE-2021-30633 — Actively Exploited: Chromium Indexed DB API (Google)

Google Chromium Indexed DB API contains a use-after-free vulnerability that allows a remote attacker, who has compromised the renderer process, to potentially perform a sandbox escape via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Goo

CVE IDCVE-2021-30633
VendorGoogle
ProductChromium Indexed DB API
Vulnerability nameGoogle Chromium Indexed DB API Use-After-Free Vulnerability
Date added2021-11-03
Remediation due2021-11-17
Known ransomware useUnknown
Required actionApply updates per vendor instructions.
DescriptionGoogle Chromium Indexed DB API contains a use-after-free vulnerability that allows a remote attacker, who has compromised the renderer process, to potentially perform a sandbox escape via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →