1. Home
  2. Mapping Frameworks
  3. Known Exploited Vulnerabilities Home
  4. Race Condition Capability Group

Known Exploited Vulnerabilities Race Condition Capability Group

All Mappings

Capability ID Capability Description Mapping Type ATT&CK ID ATT&CK Name Notes
CVE-2021-21166 Google Chromium Race Condition Vulnerability exploitation_technique T1059.007 JavaScript
Comments
CVE-2021-21166 allows an adversary to use JavaScript to exploit the Chromium browser via the audio object using a race condition to write into the heap.
References
  1. https://googleprojectzero.github.io/0days-in-the-wild/0day-RCAs/2021/CVE-2021-21166.html
CVE-2021-21166 Google Chromium Race Condition Vulnerability primary_impact T1203 Exploitation for Client Execution
Comments
CVE-2021-21166 allows an adversary to use JavaScript to exploit the Chromium browser via the audio object using a race condition to write into the heap.
References
  1. https://googleprojectzero.github.io/0days-in-the-wild/0day-RCAs/2021/CVE-2021-21166.html

Capabilities

Capability ID Capability Name Number of Mappings
CVE-2021-21166 Google Chromium Race Condition Vulnerability 2