CVE-2021-21168

✓ Confirmed 0-Day

Triaged: March 20, 2026 2 articles

VulnLookup ↗ NVD ↗ MITRE ↗

EPSS Score

Source: FIRST.org · 2026-05-24

1.36%

probability

This CVE has a 1.36% probability of being exploited in the next 30 days.

0% Top 80.4th percentile of all CVEs 100%

CVSS score unavailable

Neither CIRCL nor NVD returned a CVSS score for this CVE. View on VulnerabilityLookup ↗

Google fixes second actively exploited Chrome zero-day bug this year

BleepingComputer Mar 02, 2021

Microsoft March 2021 Patch Tuesday fixes 82 flaws, 2 zero-days

BleepingComputer Mar 09, 2021

Signal Intelligence

Confidenceⓘ

85%

EPSS 1.36%

Mentions 2

Last Seen Mar 09, 2021

CNA Information

Analyst Note

CVE-2021-21168 is explicitly named as an actively exploited Chrome zero-day in a BleepingComputer article titled 'Google fixes second actively exploited Chrome zero-day bug this year.' The title directly confirms zero-day exploitation prior to patching. Confidence is high despite missing detailed metadata, as the authoritative source explicitly classifies it as an actively exploited zero-day.

Triage Info

Decided atMar 20, 2026