CVE-2020-15959

EPSS 0.57%
Published 21.09.2020 20:15:12
Last modified 21.11.2024 05:06:32
Source chrome-cve-admin@google.com
Teams watchlist Login
Open Login

Insufficient policy enforcement in networking in Google Chrome prior to 85.0.4183.102 allowed an attacker who convinced the user to enable logging to obtain potentially sensitive information from process memory via social engineering.

Affected products Warnungen 0 Metrics 3 CWE 0 References 13

Data is provided by the National Vulnerability Database (NVD)

Google ≫ Chrome Version < 85.0.4183.102

Opensuse ≫ Backports Sle Version15.0 Updatesp1

Opensuse ≫ Backports Sle Version15.0 Updatesp2

Opensuse ≫ Leap Version15.1

Opensuse ≫ Leap Version15.2

Fedoraproject ≫ Fedora Version31

Fedoraproject ≫ Fedora Version33

Debian ≫ Debian Linux Version10.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.57%	0.66

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	4.3	2.8	1.4	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
nvd@nist.gov	4.3	8.6	2.9	AV:N/AC:M/Au:N/C:P/I:N/A:N

https://www.debian.org/security/2021/dsa-4824

Third Party Advisory

https://security.gentoo.org/glsa/202101-30

Third Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00072.html

Third Party Advisory

Mailing List

http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00078.html

Third Party Advisory

Mailing List

http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00081.html

Third Party Advisory

Mailing List

http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00049.html

Third Party Advisory

Mailing List

https://chromereleases.googleblog.com/2020/09/stable-channel-update-for-desktop.html

Vendor Advisory

Release Notes

https://crbug.com/1122684

Vendor Advisory

Permissions Required

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FN7HZIGAOCZKBT4LV363BCPRA5FLY25I/

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GNIYFJST4TFJYFZ27VODBOINCLBGULTD/

https://nvd.nist.gov/vuln/detail/CVE-2020-15959

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2020-15959

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2020-15959

EUVD