CVE-2021-38000 - Google Chromium Intents Improper Input Validation Vulnerability

CVE ID:CVE-2021-38000

Project:Google

Product:Chromium Intents

Date Added:2021-11-03Due Date:2021-11-17

Vulnerability Name

Google Chromium Intents Improper Input Validation Vulnerability

Description

Google Chromium Intents contains an improper input validation vulnerability that allows a remote attacker to arbitrarily browser to a malicious URL via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.

Known To Be Used in Ransomware Campaigns?

Unknown

Action

Apply updates per vendor instructions.

Additional Notes

https://nvd.nist.gov/vuln/detail/CVE-2021-38000