CVE-2021-21123
MEDIUMGoogle Chrome < 88.0.4324.96 - Filesystem Restriction Bypass via File System API
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2021-21123. PoCs published by Puliczek.
AI-analyzed exploit summary This repository provides a detailed technical analysis of CVE-2021-21123, a vulnerability in Google Chrome's File System Access API that allows file extension spoofing during downloads. The README includes a description of the vulnerability, affected versions, and references to related CVEs, but does not contain functional exploit code.
Description
Insufficient data validation in File System API in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to bypass filesystem restrictions via a crafted HTML page.
Exploits (1)
This repository provides a detailed technical analysis of CVE-2021-21123, a vulnerability in Google Chrome's File System Access API that allows file extension spoofing during downloads. The README includes a description of the vulnerability, affected versions, and references to related CVEs, but does not contain functional exploit code.
References (3)
Scores
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N