Remote Code Execution via Malicious File Download in Google Chrome (CVE-2021-37973)

Remote Code Execution via Malicious File Download in Google Chrome (CVE-2021-37973)

CVE-2021-37996 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

Insufficient validation of untrusted input Downloads in Google Chrome prior to 95.0.4638.54 allowed a remote attacker to bypass navigation restrictions via a malicious file.

Learn more about our Cis Benchmark Audit For Google Chrome.