CVE-2021-4324

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Jul 29, 2023
Updated: Aug 12, 2023

Summary

CVE-2021-4324 is a vulnerability that affects Google Chrome versions prior to 90.0.4430.93. It is categorized as a medium severity vulnerability and has a base score of 6.5 according to [email protected]. The vulnerability arises from insufficient policy enforcement in Google Update, allowing a remote attacker to read arbitrary files using a malicious file. The exploit requires user interaction and can be triggered over a network, with no privileges required. The impact of this vulnerability is high in terms of confidentiality, but it does not have any impact on integrity or availability. To remediate this vulnerability, organizations should update the affected Chrome version to 90.0.4430.93 or later versions provided by Google Chrome updates.

Share

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2021-4324 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options