In Factory::CreateStrictFunctionMap of factory.cc, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote code execution in an unprivileged process with no additional execution privileges needed. User interaction is not needed for exploitation.
android.googlesource.com/platform/external/chromium-libpac/+/438381db24b83e6fde76a4ca2c6a9fa91f822265
android.googlesource.com/platform/external/v8/+/2dc3777900fe5faa900be436bf42dd55353d189a
android.googlesource.com/platform/external/v8/+/6e1e26aaeffbc3b396c54fc4f3d2605b9d4cab67
source.android.com/security/bulletin/2021-07-01