CVE-2020-6558

🗓️ 21 Sep 2020 20:14:15Reported by ChromeType

Insufficient policy enforcement in iOSWeb in Google Chrome on iOS prior to 85.0.4183.83 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page

Reporter	Title	Published	Views	Family All 35
UbuntuCve	CVE-2020-6558	21 Sep 202000:00	–	ubuntucve
RedhatCVE	CVE-2020-6558	27 Aug 202003:37	–	redhatcve
Veracode	Authorization Bypass	21 Dec 202019:50	–	veracode
Prion	Design/Logic Flaw	21 Sep 202020:15	–	prion
Cvelist	CVE-2020-6558	21 Sep 202019:06	–	cvelist
NVD	CVE-2020-6558	21 Sep 202020:15	–	nvd
Debian CVE	CVE-2020-6558	21 Sep 202020:15	–	debiancve
Tenable Nessus	openSUSE Security Update : chromium (openSUSE-2020-1306)	2 Sep 202000:00	–	nessus
Tenable Nessus	Google Chrome < 85.0.4183.83 Multiple Vulnerabilities	25 Aug 202000:00	–	nessus
Tenable Nessus	FreeBSD : chromium -- multiple vulnerabilities (d73bc4e6-e7c4-11ea-a878-e09467587c17)	27 Aug 202000:00	–	nessus

Nvd

Vulners

Node

google chromeRange<85.0.4183.83

AND

apple iphone_osMatch-

Node

opensuse backports_sleMatch15.0sp1

opensuse backports_sleMatch15.0sp2

opensuse leapMatch15.1

opensuse leapMatch15.2

Node

debian debian_linuxMatch10.0

[
  {
    "product": "Chrome",
    "vendor": "Google",
    "versions": [
      {
        "lessThan": "85.0.4183.83",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
crbug	www.crbug.com/1109120
debian	www.debian.org/security/2021/dsa-4824
chromereleases	www.chromereleases.googleblog.com/2020/08/stable-channel-update-for-desktop_25.html
lists	www.lists.opensuse.org/opensuse-security-announce/2020-09/msg00081.html
lists	www.lists.opensuse.org/opensuse-security-announce/2020-09/msg00072.html
lists	www.lists.opensuse.org/opensuse-security-announce/2020-09/msg00078.html

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

21 Sep 2020 20:15Current

6.1Medium risk

Vulners AI Score6.1

CVSS24.3

CVSS36.5

EPSS0.00371

CWE-79