CVE-2021-30507

High

Inappropriate implementation in Offline in Google Chrome on Android prior to 90.0.4430.212 allowed a remote attacker who had compromised…

Chrome·CWE-829·Published 2021-06-04

CVSS

8.8

EPSS

0.01

KEV

Exploits

Vendor statements (3)

cve.orgen

207 chars

Inappropriate implementation in Offline in Google Chrome on Android prior to 90.0.4430.212 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page.

NVDes

257 chars

La implementación inapropiada en Offline en Google Chrome en Android versiones anteriores a 90.0.4430.212, permitió a un atacante remoto que había comprometido el proceso de renderización omitir el aislamiento del sitio por medio de una página HTML diseñada

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	6.8	8.6	6.4	AV:N/AC:M/Au:N/C:P/I:P/A:P
3.1	Primary	NVD	8.8	2.8	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H