CVE-2021-21207

Publication date

2021-04-26 16:25:56

Family

Chrome

State

PUBLISHED

Description

Use after free in IndexedDB in Google Chrome prior to 90.0.4430.72 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox escape via a crafted Chrome Extension.