CVE-2021-38003 - Google Chromium V8 Memory Corruption Vulnerability
Project:Google
Product:Chromium V8
Date Added:2021-11-03Due Date:2021-11-17
Vulnerability Name
Google Chromium V8 Memory Corruption Vulnerability
Description
Google Chromium V8 Engine has a bug in JSON.stringify, where the internal TheHole value can leak to script code, causing memory corruption. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.
Known To Be Used in Ransomware Campaigns?
Unknown
Action
Apply updates per vendor instructions.
Additional Notes
https://nvd.nist.gov/vuln/detail/CVE-2021-38003