Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
8.8
CVSSv3

CVE-2020-16002

Published: 03/11/2020 Updated: 07/11/2023
CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6
CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8
VMScore: 605
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Subscribe to Chrome

Vulnerability Summary

Use after free in PDFium in Google Chrome before 86.0.4240.111 allowed a remote malicious user to potentially exploit heap corruption via a crafted PDF file.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

google chrome

fedoraproject fedora 31

fedoraproject fedora 32

fedoraproject fedora 33

opensuse backports sle 15.0

debian debian linux 10.0

Vendor Advisories

Red Hat: Important: chromium-browser security update
Synopsis Important: chromium-browser security update Type/Severity Security Advisory: Important Topic An update for chromium-browser is now available for Red Hat Enterprise Linux 6 SupplementaryRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability S ...
Debian Security Advisories: DSA-4824-1 chromium -- security update
Multiple security issues were discovered in the Chromium web browser, which could result in the execution of arbitrary code, denial of service or information disclosure For the stable distribution (buster), these problems have been fixed in version 870428088-04~deb10u1 We recommend that you upgrade your chromium packages For the detailed sec ...
Google Chrome: Stable Channel Update for Desktop
The stable channel has been updated to 8604240111 for Windows, Mac & Linux which will roll out over the coming days/weeksA list of all changes is available in the log Interested in switching release channels? Find out how If you find a new issue, please let us know by filing a bug The community help forum is also a great place to reach ...

Github Repositories

https://github.com/BOB-Jour/Chromium-Bug-Hunting-Project

웹 브라우저 취약점 탐지 자동화 프로젝트 취약점 분석 트랙 BOB-Jour팀은 BoB(Best of the Best) 프로젝트로 약 3개월간 자동화를 이용하여 웹 브라우저의 취약점 탐지를 하고자 했다 Overview 프로젝트의 목표는 크롬 브라우저 버그 헌팅과 브라우저 보안 시장의 인식 향상을 위해 자동화를 이용

References

CWE-787CWE-416https://crbug.com/1137630https://chromereleases.googleblog.com/2020/10/stable-channel-update-for-desktop_20.htmlhttp://lists.opensuse.org/opensuse-security-announce/2020-11/msg00016.htmlhttps://www.debian.org/security/2021/dsa-4824https://security.gentoo.org/glsa/202101-30https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4GWCWNHTTYOH6HSFUXPGPBB6J6JYZHZE/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/24QFL4C3AZKMFVL7LVSYMU2DNE5VVUGS/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SC3U3H6AISVZB5PLZLLNF4HMQ4UFFL7M/https://access.redhat.com/errata/RHSA-2020:4351https://nvd.nist.govhttps://www.debian.org/security/2021/dsa-4824
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654CVE-2024-2757authentication bypassCVE-2024-3194CVE-2024-33640CVE-2024-21111dosinsecure direct object referenceCVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook