Lucene search

K

ChromeCVELIST:CVE-2020-15959

HistorySep 21, 2020 - 7:06 p.m.

CVE-2020-15959

2020-09-2119:06:34

Chrome

www.cve.org

1

5.6 Medium

AI Score

Confidence

Low

0.006 Low

EPSS

Percentile

78.8%

Insufficient policy enforcement in networking in Google Chrome prior to 85.0.4183.102 allowed an attacker who convinced the user to enable logging to obtain potentially sensitive information from process memory via social engineering.

CNA Affected

[
  {
    "product": "Chrome",
    "vendor": "Google",
    "versions": [
      {
        "lessThan": "85.0.4183.102",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

References

lists.opensuse.org/opensuse-security-announce/2020-09/msg00072.html

lists.opensuse.org/opensuse-security-announce/2020-09/msg00078.html

lists.opensuse.org/opensuse-security-announce/2020-09/msg00081.html

lists.opensuse.org/opensuse-security-announce/2020-10/msg00049.html

chromereleases.googleblog.com/2020/09/stable-channel-update-for-desktop.html

crbug.com/1122684

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FN7HZIGAOCZKBT4LV363BCPRA5FLY25I/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GNIYFJST4TFJYFZ27VODBOINCLBGULTD/

security.gentoo.org/glsa/202101-30

www.debian.org/security/2021/dsa-4824

5.6 Medium

AI Score

Confidence

Low

0.006 Low

EPSS

Percentile

78.8%

Related for CVELIST:CVE-2020-15959

cve1 veracode1 ubuntucve1 debiancve1 redhatcve1 prion1 nvd1 nessus12 gentoo2 chrome1 redhat1 kaspersky2 openvas7 fedora3 freebsd1 suse4 debian1 osv1 mscve1