Information Disclosure

2021-04-2117:43:02

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.009 Low

EPSS

Percentile

83.1%

JSON

chromium is vulnerable to information disclosure. The vulnerability exists due to a use-after-free error within Network API in Google Chrome. A remote attacker can trick the victim into visiting a specially crafted web page, trigger a use-after-free error and gain access to sensitive information.

CPENameOperatorVersion
chromium:sideq88.0.4324.182-1
chromium:sideq83.0.4103.116-3.1
chromium:bustereq83.0.4103.116-1~deb10u3
chromium:bustereq87.0.4280.141-0.1~deb10u1
chromium:edgeeq80.0.3987.149-r0
chromium:edgeeq89.0.4389.114-r0
chromium:edgeeq81.0.4044.122-r0
chromium:edgeeq81.0.4044.113-r0
chromium:edgeeq89.0.4389.128-r2
chromium:edgeeq81.0.4044.129-r0

Name	Operator	Version
chromium:sid	eq	88.0.4324.182-1
chromium:sid	eq	83.0.4103.116-3.1
chromium:buster	eq	83.0.4103.116-1~deb10u3
chromium:buster	eq	87.0.4280.141-0.1~deb10u1
chromium:edge	eq	80.0.3987.149-r0
chromium:edge	eq	89.0.4389.114-r0
chromium:edge	eq	81.0.4044.122-r0
chromium:edge	eq	81.0.4044.113-r0
chromium:edge	eq	89.0.4389.128-r2
chromium:edge	eq	81.0.4044.129-r0