VYPR
High severity8.8NVD Advisory· Published Feb 9, 2021· Updated Jun 17, 2026

CVE-2021-21127

CVE-2021-21127

Description

Insufficient policy enforcement in extensions in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to bypass content security policy via a crafted Chrome Extension.

Affected products

9

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.