1. Home
  2. Mapping Frameworks
  3. Known Exploited Vulnerabilities Home
  4. Google Chromium V8 Use-After-Free Vulnerability

Known Exploited Vulnerabilities CVE-2021-37975 Mappings

Use after free in V8 in Google Chrome prior to 94.0.4606.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

Mappings

Capability ID Capability Description Mapping Type ATT&CK ID ATT&CK Name Notes
CVE-2021-37975 Google Chromium V8 Use-After-Free Vulnerability exploitation_technique T1059.007 JavaScript
Comments
CVE-2021-37975 allows an adversary to use JavaScript to exploit the Chromium browser V8 JavaScript engine which allows for a write into the heap.
References
  1. https://github.blog/security/vulnerability-research/chrome-in-the-wild-bug-analysis-cve-2021-37975/
CVE-2021-37975 Google Chromium V8 Use-After-Free Vulnerability primary_impact T1203 Exploitation for Client Execution
Comments
CVE-2021-37975 allows an adversary to use JavaScript to exploit the Chromium browser V8 JavaScript engine which allows for a write into the heap.
References
  1. https://github.blog/security/vulnerability-research/chrome-in-the-wild-bug-analysis-cve-2021-37975/