CVE-2021-21165

✓ Confirmed 0-Day

Triaged: March 20, 2026 2 articles

VulnLookup ↗ NVD ↗ MITRE ↗

EPSS Score

Source: FIRST.org · 2026-05-24

1.35%

probability

This CVE has a 1.35% probability of being exploited in the next 30 days.

0% Top 80.3th percentile of all CVEs 100%

CVSS score unavailable

Neither CIRCL nor NVD returned a CVSS score for this CVE. View on VulnerabilityLookup ↗

Attack Intelligence

CWE-362 · Race Condition CWE-691 · Insufficient Control Flow Management

Google fixes second actively exploited Chrome zero-day bug this year

BleepingComputer Mar 02, 2021

Microsoft March 2021 Patch Tuesday fixes 82 flaws, 2 zero-days

BleepingComputer Mar 09, 2021

Signal Intelligence

Confidenceⓘ

85%

EPSS 1.35%

Mentions 2

Last Seen Mar 09, 2021

CNA Information

Analyst Note

CVE-2021-21165 is explicitly named as an actively exploited Chrome zero-day in a BleepingComputer article from 2021. The article title directly states 'Google fixes second actively exploited Chrome zero-day bug this year,' confirming in-the-wild exploitation and patch deployment in the same timeframe, consistent with zero-day criteria.

Triage Info

Decided atMar 20, 2026