CVE-2021-33970 — CRITICAL (10.0)

Vulnerability Description

Buffer Overflow vulnerability in Qihoo 360 Chrome v13.0.2170.0 allows attacker to escalate priveleges.

CVSS Score

10.0

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Browser.360	Chrome	13.0.2170.0

Related Weaknesses (CWE)

CWE-843

References

https://MemoryCorruptor.blogspot.com/p/vulnerabilities-disclosures.htmlThird Party Advisory
https://pastebin.com/Qug7tquWExploitThird Party Advisory
https://www.youtube.com/channel/UCLJ6fZxUqbmPe4jiwC6o4hg/Exploit
https://MemoryCorruptor.blogspot.com/p/vulnerabilities-disclosures.htmlThird Party Advisory
https://pastebin.com/Qug7tquWExploitThird Party Advisory
https://www.youtube.com/channel/UCLJ6fZxUqbmPe4jiwC6o4hg/Exploit

FAQ

What is CVE-2021-33970?

CVE-2021-33970 is a vulnerability with a CVSS score of 10.0 (CRITICAL). Buffer Overflow vulnerability in Qihoo 360 Chrome v13.0.2170.0 allows attacker to escalate priveleges.

How severe is CVE-2021-33970?

CVE-2021-33970 has been rated CRITICAL with a CVSS base score of 10.0/10. This is considered a critical vulnerability requiring immediate attention.

Is there a patch for CVE-2021-33970?

Check the references section above for vendor advisories and patch information. Affected products include: Browser.360 Chrome.