Lucene search
Veracode Vulnerability DatabaseVERACODE:28748HistoryDec 21, 2020 - 7:58 p.m.
Cross Origin Resource Sharing (CORS) Bypass
2020-12-2119:58:07
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
cross origin resource sharing
vulnerability
remote attacker
data leak
html page
chromium
blink
EPSS
0.029
Percentile
91.0%
chromium is vulnerable to CORS bypass. The vulnerability exists through insufficient policy enforcement in Blink that allows a remote attacker to leak cross-origin data via a crafted HTML page.
References
lists.opensuse.org/opensuse-security-announce/2020-09/msg00072.html
lists.opensuse.org/opensuse-security-announce/2020-09/msg00078.html
lists.opensuse.org/opensuse-security-announce/2020-09/msg00081.html
chromereleases.googleblog.com/2020/08/stable-channel-update-for-desktop_25.html
crbug.com/1086845
lists.fedoraproject.org/archives/list/[email protected]/message/EE7XWIZBME7JAY7N6CGPET4CLNHHEIVT/
security-tracker.debian.org/tracker/CVE-2020-6562
security.gentoo.org/glsa/202101-30
www.debian.org/security/2021/dsa-4824
Related
cvelist
cvelist
CVE-2020-6562
2020-09-21 19:06:50
redhatcve
redhatcve
CVE-2020-6562
2020-08-27 03:38:06
nvd
nvd
CVE-2020-6562
2020-09-21 20:15:14
debiancve
debiancve
CVE-2020-6562
2020-09-21 20:15:14
prion
prion
Design/Logic Flaw
2020-09-21 20:15:00
ubuntucve
ubuntucve
CVE-2020-6562
2020-09-21 00:00:00
cve
cve
CVE-2020-6562
2020-09-21 20:15:14
redhat
redhat
(RHSA-2020:3723) Important: chromium-browser security update
2020-09-10 13:29:04
gentoo
gentoo
Chromium, Google Chrome: Multiple vulnerabilities
2020-08-26 00:00:00
Qt WebEngine: Multiple vulnerabilities
2021-01-26 00:00:00
nessus
nessus
RHEL 6 : chromium-browser (RHSA-2020:3723)
2020-09-10 00:00:00
GLSA-202008-11 : Chromium, Google Chrome: Multiple vulnerabilities
2020-08-27 00:00:00
Google Chrome < 85.0.4183.83 Multiple Vulnerabilities
2020-08-25 00:00:00
freebsd
freebsd
chromium -- multiple vulnerabilities
2020-08-25 00:00:00
suse
suse
Security update for chromium (important)
2020-09-01 00:00:00
Security update for chromium (important)
2020-09-03 00:00:00
Security update for chromium (important)
2020-09-18 00:00:00
openvas
openvas
openSUSE: Security Advisory for chromium (openSUSE-SU-2020:1306-1)
2020-09-02 00:00:00
openSUSE: Security Advisory for chromium (openSUSE-SU-2020:1309-1)
2020-09-02 00:00:00
kaspersky
kaspersky
KLA11941 Multiple vulnerabilities in Google Chrome
2020-08-25 00:00:00
KLA11967 Multiple vulnerabilites in Opera
2020-09-29 00:00:00
chrome
chrome
Stable Channel Update for Desktop
2020-08-25 00:00:00
fedora
fedora
[SECURITY] Fedora 31 Update: chromium-85.0.4183.83-1.fc31
2020-09-11 15:14:50
[SECURITY] Fedora 32 Update: chromium-85.0.4183.83-1.fc32
2020-09-04 15:18:11
[SECURITY] Fedora 33 Update: chromium-85.0.4183.83-1.fc33
2020-09-25 17:12:36
osv
osv
chromium - security update
2021-01-01 00:00:00
chromedriver-93.0.4577.82-1.1 on GA media
2024-06-15 00:00:00
debian
debian
[SECURITY] [DSA 4824-1] chromium security update
2021-01-01 18:49:56
mscve
mscve
Chromium Security Updates for Microsoft Edge (Chromium-Based)
2020-01-28 08:00:00