Lucene search

K
cvelistChromeCVELIST:CVE-2020-16020
HistoryJan 08, 2021 - 5:51 p.m.

CVE-2020-16020

2021-01-0817:51:18
Chrome
www.cve.org
8
inappropriate implementation
cryptohome
google chrome
bypassing access control

AI Score

8.3

Confidence

High

EPSS

0.001

Percentile

43.8%

Inappropriate implementation in cryptohome in Google Chrome on ChromeOS prior to 87.0.4280.66 allowed a remote attacker who had compromised the browser process to bypass discretionary access control via a malicious file.

CNA Affected

[
  {
    "product": "Chrome",
    "vendor": "Google",
    "versions": [
      {
        "lessThan": "87.0.4280.66",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]