Issued: Wednesday, 29 September, 2021 |
Last Revision: Wednesday, 29 September, 2021 |
Vendor: |
Product: |
Severity Level: |
In a security update of September 2021, Google issued security fixes for 11 flaws total, including two zero-day vulnerabilities that have already been exploited in the wild. The first, tracked as CVE-202130632, is described as an "out of bounds write in V8," an open-source JavaScript engine for Chrome. The second is being tracked as CVE-2021-30633 and affects the "use after free indexed DB application programming interface (API)."
CVE | Description | CVSS3.0 Score |
CVE-2021-30632 | Out of bounds write in V8 | n/a |
CVE-2021-30633 | Use after free in Indexed DB API. | n/a |
Table 1: Vulnerability details
Vulnerability / CVE | Affected Product(s) |
CVE-2021-30632 CVE-2021-30633 | Google Chrome Prior Version of 93.0.4577.82 |
Table 2: Vulnerability Versions
Chrome users are advised to update to the latest version (93.0.4577.82) for Windows, Mac, and Linux.