Google released an update for Chrome 90 this week that addresses yet another serious vulnerability in the web browser’s V8 JavaScript engine.
Researchers from Chinese cybersecurity firm Singular Security Lab reported the flaw to Google as CVE-2021-21227, with a high severity rating. For reporting the vulnerability, which Google described as “insufficient data validation in V8,” the researcher was paid $15,000.