CVE-2021-30633

Google Chromium Indexed DB API Use-After-Free Vulnerability

Description

Google Chromium Indexed DB API contains a use-after-free vulnerability that allows a remote attacker, who has compromised the renderer process, to potentially perform a sandbox escape via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.

Severity: CRITICAL

CVSS Score: 9.6

Vendor: Google

Product: Chromium Indexed DB API