CVE-2020-16012MEDIUM
Description
Side-channel information leakage in graphics in Google Chrome prior to 87.0.4280.66 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
References
https://chromereleases.googleblog.com/2020/11/stable-channel-update-for-desktop_17.html
Details
Source: MITRE
Published: 2021-01-08
Updated: 2021-01-12
Type: NVD-CWE-noinfo
Risk Information
CVSS v2.0
Base Score: 4.3
Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N
Impact Score: 2.9
Exploitability Score: 8.6
Severity: MEDIUM
CVSS v3.0
Base Score: 4.3
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
Impact Score: 1.4
Exploitability Score: 2.8
Severity: MEDIUM
Vulnerable Software
Configuration 1
OR
Tenable Plugins
| ID | Name | Product | Family | Severity |
|---|---|---|---|---|
| 147399 | NewStart CGSL CORE 5.04 / MAIN 5.04 : firefox Multiple Vulnerabilities (NS-SA-2021-0018) | Nessus | NewStart CGSL Local Security Checks | high |
| 147352 | NewStart CGSL MAIN 6.02 : firefox Multiple Vulnerabilities (NS-SA-2021-0065) | Nessus | NewStart CGSL Local Security Checks | high |
| 147286 | NewStart CGSL MAIN 6.02 : thunderbird Multiple Vulnerabilities (NS-SA-2021-0081) | Nessus | NewStart CGSL Local Security Checks | high |
| 146200 | Oracle Linux 6 : firefox (ELSA-2020-5257) | Nessus | Oracle Linux Local Security Checks | high |
| 146197 | Oracle Linux 6 : thunderbird (ELSA-2020-5238) | Nessus | Oracle Linux Local Security Checks | high |
| 145963 | CentOS 8 : firefox (CESA-2020:5237) | Nessus | CentOS Local Security Checks | high |
| 145368 | openSUSE Security Update : MozillaFirefox (openSUSE-2020-2315) | Nessus | SuSE Local Security Checks | high |
| 145070 | RHEL 8 : firefox (RHSA-2020:5314) | Nessus | Red Hat Local Security Checks | high |
| 144798 | Amazon Linux 2 : thunderbird (ALAS-2021-1586) | Nessus | Amazon Linux Local Security Checks | high |
| 144672 | Debian DSA-4824-1 : chromium - security update | Nessus | Debian Local Security Checks | high |
| 144004 | CentOS 7 : firefox (CESA-2020:5239) | Nessus | CentOS Local Security Checks | high |
| 143910 | CentOS 7 : thunderbird (CESA-2020:5235) | Nessus | CentOS Local Security Checks | high |
| 143745 | SUSE SLED15 / SLES15 Security Update : MozillaFirefox (SUSE-SU-2020:3383-1) | Nessus | SuSE Local Security Checks | high |
| 143741 | SUSE SLES12 Security Update : MozillaFirefox (SUSE-SU-2020:3548-1) | Nessus | SuSE Local Security Checks | high |
| 143723 | SUSE SLED15 / SLES15 Security Update : MozillaFirefox (SUSE-SU-2020:3458-1) | Nessus | SuSE Local Security Checks | high |
| 143540 | openSUSE Security Update : MozillaThunderbird (openSUSE-2020-2187) | Nessus | SuSE Local Security Checks | high |
| 143531 | GLSA-202012-04 : Mozilla Thunderbird: Multiple vulnerabilities | Nessus | Gentoo Local Security Checks | high |
| 143494 | GLSA-202012-03 : Mozilla Firefox: Multiple vulnerabilities | Nessus | Gentoo Local Security Checks | high |
| 143378 | Oracle Linux 7 : firefox (ELSA-2020-5239) | Nessus | Oracle Linux Local Security Checks | high |
| 143377 | Oracle Linux 8 : firefox (ELSA-2020-5237) | Nessus | Oracle Linux Local Security Checks | high |
| 143372 | Oracle Linux 8 : thunderbird (ELSA-2020-5236) | Nessus | Oracle Linux Local Security Checks | high |
| 143371 | Scientific Linux Security Update : firefox on SL6.x i686/x86_64 (2020:5257) | Nessus | Scientific Linux Local Security Checks | high |
| 143370 | RHEL 7 : firefox (RHSA-2020:5239) | Nessus | Red Hat Local Security Checks | high |
| 143369 | RHEL 7 : thunderbird (RHSA-2020:5235) | Nessus | Red Hat Local Security Checks | high |
| 143368 | Oracle Linux 7 : thunderbird (ELSA-2020-5235) | Nessus | Oracle Linux Local Security Checks | high |
| 143366 | RHEL 6 : firefox (RHSA-2020:5257) | Nessus | Red Hat Local Security Checks | high |
| 143365 | RHEL 8 : firefox (RHSA-2020:5237) | Nessus | Red Hat Local Security Checks | high |
| 143361 | Scientific Linux Security Update : thunderbird on SL6.x i686/x86_64 (2020:5238) | Nessus | Scientific Linux Local Security Checks | high |
| 143360 | Scientific Linux Security Update : firefox on SL7.x x86_64 (2020:5239) | Nessus | Scientific Linux Local Security Checks | high |
| 143359 | Scientific Linux Security Update : thunderbird on SL7.x i686/x86_64 (2020:5235) | Nessus | Scientific Linux Local Security Checks | high |
| 143357 | openSUSE Security Update : MozillaThunderbird (openSUSE-2020-2096) | Nessus | SuSE Local Security Checks | high |
| 143352 | openSUSE Security Update : MozillaFirefox (openSUSE-2020-2020) | Nessus | SuSE Local Security Checks | high |
| 143340 | openSUSE Security Update : MozillaFirefox (openSUSE-2020-2031) | Nessus | SuSE Local Security Checks | high |
| 143333 | openSUSE Security Update : chromium (openSUSE-2020-2021) | Nessus | SuSE Local Security Checks | medium |
| 143303 | openSUSE Security Update : chromium (openSUSE-2020-2032) | Nessus | SuSE Local Security Checks | medium |
| 143281 | RHEL 8 : thunderbird (RHSA-2020:5232) | Nessus | Red Hat Local Security Checks | high |
| 143280 | RHEL 8 : firefox (RHSA-2020:5233) | Nessus | Red Hat Local Security Checks | high |
| 143279 | RHEL 8 : thunderbird (RHSA-2020:5231) | Nessus | Red Hat Local Security Checks | high |
| 143278 | RHEL 6 : thunderbird (RHSA-2020:5238) | Nessus | Red Hat Local Security Checks | high |
| 143277 | RHEL 8 : thunderbird (RHSA-2020:5240) | Nessus | Red Hat Local Security Checks | high |
| 143276 | RHEL 8 : thunderbird (RHSA-2020:5236) | Nessus | Red Hat Local Security Checks | high |
| 143275 | RHEL 8 : firefox (RHSA-2020:5234) | Nessus | Red Hat Local Security Checks | high |
| 143267 | Ubuntu 20.10 : Thunderbird vulnerabilities (USN-4647-1) | Nessus | Ubuntu Local Security Checks | high |
| 143227 | Fedora 32 : chromium (2020-3e005ce2e0) | Nessus | Fedora Local Security Checks | medium |
| 143224 | Debian DLA-2464-1 : thunderbird security update | Nessus | Debian Local Security Checks | high |
| 143191 | Debian DSA-4796-1 : thunderbird - security update | Nessus | Debian Local Security Checks | high |
| 143176 | Fedora 33 : chromium (2020-10ec8aca61) | Nessus | Fedora Local Security Checks | medium |
| 143156 | Microsoft Edge (Chromium) < 87.0.664.41 Multiple Vulnerabilities | Nessus | Windows | medium |
| 143133 | Debian DLA-2457-1 : firefox-esr security update | Nessus | Debian Local Security Checks | high |
| 143130 | Debian DSA-4793-1 : firefox-esr - security update | Nessus | Debian Local Security Checks | high |
| 143127 | Ubuntu 16.04 LTS : Firefox vulnerabilities (USN-4637-2) | Nessus | Ubuntu Local Security Checks | high |
| 143121 | Ubuntu 18.04 LTS / 20.04 LTS / 20.10 : Firefox vulnerabilities (USN-4637-1) | Nessus | Ubuntu Local Security Checks | high |
| 143059 | Mozilla Thunderbird < 78.5 | Nessus | MacOS X Local Security Checks | high |
| 143058 | Mozilla Thunderbird < 78.5 | Nessus | Windows | high |
| 142971 | Google Chrome < 87.0.4280.66 Multiple Vulnerabilities | Nessus | Windows | medium |
| 142970 | Google Chrome < 87.0.4280.66 Multiple Vulnerabilities | Nessus | MacOS X Local Security Checks | medium |
| 142913 | Mozilla Firefox ESR < 78.5 | Nessus | Windows | high |
| 142912 | Mozilla Firefox ESR < 78.5 | Nessus | MacOS X Local Security Checks | high |
| 142911 | Mozilla Firefox < 83.0 | Nessus | MacOS X Local Security Checks | high |
| 142910 | Mozilla Firefox < 83.0 | Nessus | Windows | high |