Skip to main content

CVEDatabase.com

CVEDatabase.com

CVEDatabase.com

CVEDatabase.com

CVEDatabase.com

Live

Loading

CVEDatabase.com

Live vulnerability intelligence

Search CVEs, review live threat context, and move from vulnerability discovery to remediation planning with source-backed data from NVD, CISA KEV, and EPSS.

NVDCISA KEVEPSS· Refreshed hourly

Company & legal

About
Sponsorship
Contact
Privacy
Cookies
Terms

Data sources and trademarks

CVEDatabase.com uses data from the National Vulnerability Database, CISA Known Exploited Vulnerabilities, and FIRST EPSS. This site is not endorsed by NVD, MITRE, CISA, or FIRST. CVE is a registered trademark of The MITRE Corporation.

NVD CISA KEV EPSS MITRE CVE

Sitemap

AI executive summary
AI remediation
All features
Blog
Browse by severity
Browse by year
Browse vendors
Bulk analysis
CISA KEV
CVSS scoring
CWE browser
Data dashboard
Developer security
EPSS
Exploited (KEV)
Glossary
Help center
Learn hub
Master RSS
MITRE ATT&CK
OpenSearch
Patch Tuesday
Patching playbook
REST API
RSS feeds
SBOM scanner
Search CVEs
Understanding CVE
Vulnerability management

© 2026 Brilliant Dog Ltd. All rights reserved.

Home GoogleCVE-2021-37975

High

8.8CVSS

CVE-2021-37975

Vendor:Google

Published: 8 Oct 2021

Updated 6mo ago

Generated remediation guidance and an executive summary. No account required.

Description

Use after free in V8 in Google Chrome prior to 94.0.4606.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

CVSS Metrics

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Attack Vector: network
Complexity: low
Privileges: none
User Action: required
Scope: unchanged
Confidentiality: high
Integrity: high
Availability: high
Weaknesses: CWE-416 · Use After Free CWE-416 · Use After Free

Metadata

Primary Vendor: GOOGLE
Published: 10/8/2021
Last Modified: 10/24/2025
Source: NIST NVD
Note: Verify all details with official vendor sources before applying patches.

Affected Products

google : chromefedoraproject : fedorafedoraproject : fedorafedoraproject : fedoradebian : debian_linuxdebian : debian_linux

Remediation Guidance

Executive Summary

View on NIST NVD

Fix CVE-2021-37975 - HIGH google chrome | CVEDatabase.com

Related reading

Use CWE-416, Google vendor hub and Chrome product page to widen CVE-2021-37975 into its surrounding weakness, vendor, and product context.

Compare it with CVE-2026-6920, CVE-2026-6919 and CVE-2026-6363 for nearby disclosures in the same product family. Additional editorial context is available in The Weekly Cybersecurity Brief: February 27th, 2026.