vulnerability

Google Chrome Vulnerability: CVE-2021-30586 Use after free in dialog box handling on Windows

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:N/AC:M/Au:N/C:P/I:P/A:P)	Jul 21, 2021	Jul 21, 2021	May 10, 2026

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:P/A:P)

Published

Jul 21, 2021

Added

Jul 21, 2021

Modified

May 10, 2026

Description

Use after free in dialog box handling in Windows in Google Chrome prior to 92.0.4515.107 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page.

Solution

google-chrome-upgrade-latest

References

CVE-2021-30586
https://attackerkb.com/topics/CVE-2021-30586
CWE-416
EUVD-EUVD-2021-17506
https://chromereleases.googleblog.com/2021/07/stable-channel-update-for-desktop_20.html
https://euvd.enisa.europa.eu/vulnerability/EUVD-2021-17506

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report