Lucene search
Veracode Vulnerability DatabaseVERACODE:28720HistoryDec 21, 2020 - 7:50 p.m.
Arbitrary Code Execution
2020-12-2119:50:38
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
9
0.161 Low
EPSS
Percentile
96.0%
chromium is vulnerable to arbitrary code execution. The vulnerability exists through use after free in WebUSB that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page.
| CPE | Name | Operator | Version |
|---|---|---|---|
| chromium:sid | eq | 83.0.4103.116-3.1 | |
| chromium:buster | eq | 83.0.4103.116-1~deb10u3 | |
| chromium:bullseye | eq | 83.0.4103.116-3.1 |
References
packetstormsecurity.com/files/159610/Chrome-USB-OnServiceConnectionError-Use-After-Free.html
chromereleases.googleblog.com/2020/07/stable-channel-update-for-desktop_27.html
crbug.com/1106773
lists.fedoraproject.org/archives/list/[email protected]/message/EE7XWIZBME7JAY7N6CGPET4CLNHHEIVT/
security-tracker.debian.org/tracker/CVE-2020-6541
security.gentoo.org/glsa/202101-30
www.debian.org/security/2021/dsa-4824
Related
cvelist
cvelist
CVE-2020-6541
2020-09-21 19:06:40
ubuntucve
ubuntucve
CVE-2020-6541
2020-09-21 00:00:00
redhatcve
redhatcve
CVE-2020-6541
2020-07-28 17:38:22
nvd
nvd
CVE-2020-6541
2020-09-21 20:15:13
prion
prion
Design/Logic Flaw
2020-09-21 20:15:00
cve
cve
CVE-2020-6541
2020-09-21 20:15:13
debiancve
debiancve
CVE-2020-6541
2020-09-21 20:15:13
freebsd
freebsd
chromium -- multiple vulnerabilities
2020-07-27 00:00:00
suse
suse
Security update of chromium (low)
2020-09-18 00:00:00
Security update of chromium (low)
2020-08-06 00:00:00
Security update of chromium (low)
2020-08-07 00:00:00
openvas
openvas
nessus
nessus
openSUSE Security Update : chromium (openSUSE-2020-1154)
2020-08-10 00:00:00
Google Chrome < 84.0.4147.105 Multiple Vulnerabilities
2020-07-27 00:00:00
Google Chrome < 84.0.4147.105 Multiple Vulnerabilities
2020-07-27 00:00:00
gentoo
gentoo
Chromium, Google Chrome: Multiple vulnerabilities
2020-07-29 00:00:00
Qt WebEngine: Multiple vulnerabilities
2021-01-26 00:00:00
kaspersky
kaspersky
KLA11917 Multiple vulnerabilities in Google Chrome
2020-07-27 00:00:00
KLA11925 Multiple vulnerabilites in Opera
2020-08-05 00:00:00
chrome
chrome
Stable Channel Update for Desktop
2020-07-27 00:00:00
fedora
fedora
[SECURITY] Fedora 33 Update: chromium-85.0.4183.83-1.fc33
2020-09-25 17:12:36
[SECURITY] Fedora 32 Update: chromium-85.0.4183.83-1.fc32
2020-09-04 15:18:11
[SECURITY] Fedora 31 Update: chromium-85.0.4183.83-1.fc31
2020-09-11 15:14:50
redhat
redhat
(RHSA-2020:3377) Critical: chromium-browser security update
2020-08-10 06:22:50
osv
osv
chromium - security update
2021-01-01 00:00:00
debian
debian
[SECURITY] [DSA 4824-1] chromium security update
2021-01-01 18:49:56
mscve
mscve
Chromium Security Updates for Microsoft Edge (Chromium-Based)
2020-01-28 08:00:00