← ExploitWatch
HomeExploited Vulnerabilities

CVE-2021-37973 — Actively Exploited: Chromium Portals (Google)

Google Chromium Portals contains a use-after-free vulnerability that allows a remote attacker, who has compromised the renderer process, to potentially perform a sandbox escape via a crafted HTML page. This vulnerability affects web browsers that utilize Chromium, including Google Chrome and Microsoft Edge.

CVE IDCVE-2021-37973
VendorGoogle
ProductChromium Portals
Vulnerability nameGoogle Chromium Portals Use-After-Free Vulnerability
Date added2021-11-03
Remediation due2021-11-17
Known ransomware useUnknown
Required actionApply updates per vendor instructions.
DescriptionGoogle Chromium Portals contains a use-after-free vulnerability that allows a remote attacker, who has compromised the renderer process, to potentially perform a sandbox escape via a crafted HTML page. This vulnerability affects web browsers that utilize Chromium, including Google Chrome and Microsoft Edge.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →