Remote Code Execution via Malicious File Download in Google Chrome (CVE-2021-37973)
CVE-2021-37996 · MEDIUM Severity
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
Insufficient validation of untrusted input Downloads in Google Chrome prior to 95.0.4638.54 allowed a remote attacker to bypass navigation restrictions via a malicious file.
Learn more about our Cis Benchmark Audit For Google Chrome.