Lucene search

K

Veracode Vulnerability DatabaseVERACODE:28724

HistoryDec 21, 2020 - 7:50 p.m.

Domain Spoofing

2020-12-2119:50:47

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

9

chromium

domain spoofing

vulnerability

remote attacker

exploit

html page

networking

implementation

EPSS

0.004

Percentile

74.8%

chromium is vulnerable to domain spoofing. Inappropriate implementation in networking allows a remote attacker to perform domain spoofing via a malicious HTML page.

References

lists.opensuse.org/opensuse-security-announce/2020-11/msg00016.html

chromereleases.googleblog.com/2020/10/stable-channel-update-for-desktop.html

crbug.com/1083278

lists.fedoraproject.org/archives/list/[email protected]/message/24QFL4C3AZKMFVL7LVSYMU2DNE5VVUGS/

lists.fedoraproject.org/archives/list/[email protected]/message/4GWCWNHTTYOH6HSFUXPGPBB6J6JYZHZE/

lists.fedoraproject.org/archives/list/[email protected]/message/SC3U3H6AISVZB5PLZLLNF4HMQ4UFFL7M/

security-tracker.debian.org/tracker/CVE-2020-6557

security.gentoo.org/glsa/202101-30

www.debian.org/security/2021/dsa-4824

EPSS

0.004

Percentile

74.8%

Related for VERACODE:28724

cvelist1 redhatcve1 nvd1 cve1 prion1 ubuntucve1 debiancve1 nessus12 openvas7 kaspersky1 archlinux1 redhat1 freebsd1 gentoo2 suse3 chrome1 fedora3 osv2 debian1 mscve1