EPSS
Percentile
62.1%
Insufficient data validation in WebUI in Google Chrome prior to 84.0.4147.89 allowed a remote attacker who had compromised the renderer process to inject scripts or HTML into a privileged page via a crafted HTML page.
bugzilla.redhat.com/show_bug.cgi?id=1857341
chromereleases.googleblog.com/2020/07/stable-channel-update-for-desktop.html
nvd.nist.gov/vuln/detail/CVE-2020-6535
www.cve.org/CVERecord?id=CVE-2020-6535