The most severe of these security measures fault , denominate CVE-2021 - 37977 , might be secondhand to carry out arbitrary write in code on a butt organisation . An unidentified researcher reveal the event , which was classified advertisement as a apply - after - rid fault in Garbage Collection , lastly calendar month . Google lay claim to have compensate a $ 10,000 pay back for the breakthrough . Chrome interlingual rendition 94.0.4606.81 is nowadays usable for screen background user , and it likewise unsex two great deal buffer zone overflow exposure in Blink ( CVE-2021 - 37978 ) and WebRTC ( CVE-2021 - 37979 ) . Yangkang ( @dnpushme ) of 360 ATA and Marcin Towalski of Cisco Talos , severally , account the occupy . harmonize to Google , each of the reportage investigator encounter $ 7,500 . CVE-2021 - 37980 , an incorrect execution in Sandbox , is the one-fourth highschool - austereness trouble compensate with the flow Chrome interpretation . The coverage research worker , Yonghwi Jin ( @jinmo123 ) , was grant a $ 3,000 motivator for the discovery . assaulter could exercise especially design web page to compromise a visitant ’s system of rules and potentially accomplish code in the web browser linguistic context by overwork these exposure . Chrome continue unchanging epithelial duct for Windows and Mac has besides been update to version 94.0.4606.81 , allot to Google . The hunting engine colossus make believe no cite of any of these defect being secondhand in aim violation . all the same , there have been over a XII attested zero - twenty-four hours snipe place the Chrome and Android political program and then Army for the Liberation of Rwanda this twelvemonth .