CVE-2020-16042

MEDIUM

Description

Uninitialized Use in V8 in Google Chrome prior to 87.0.4280.88 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page.

References

https://chromereleases.googleblog.com/2020/12/stable-channel-update-for-desktop.html

https://crbug.com/1151890

Details

Source: MITRE

Published: 2021-01-08

Updated: 2021-01-11

Type: CWE-200

Risk Information

CVSS v2.0

Base Score: 4.3

Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N

Impact Score: 2.9

Exploitability Score: 8.6

Severity: MEDIUM

CVSS v3.0

Base Score: 6.5

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Impact Score: 3.6

Exploitability Score: 2.8

Severity: MEDIUM

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*

Tenable Plugins

View all (54 total)

IDNameProductFamilySeverity
147399NewStart CGSL CORE 5.04 / MAIN 5.04 : firefox Multiple Vulnerabilities (NS-SA-2021-0018)NessusNewStart CGSL Local Security Checks
high
147342NewStart CGSL MAIN 6.02 : thunderbird Multiple Vulnerabilities (NS-SA-2021-0091)NessusNewStart CGSL Local Security Checks
medium
147268NewStart CGSL MAIN 6.02 : firefox Multiple Vulnerabilities (NS-SA-2021-0089)NessusNewStart CGSL Local Security Checks
medium
145902CentOS 8 : firefox (CESA-2020:5562)NessusCentOS Local Security Checks
medium
145375openSUSE Security Update : opera (openSUSE-2020-2360)NessusSuSE Local Security Checks
high
145372openSUSE Security Update : MozillaFirefox (openSUSE-2020-2318)NessusSuSE Local Security Checks
medium
145362openSUSE Security Update : MozillaThunderbird (openSUSE-2020-2317)NessusSuSE Local Security Checks
medium
145332openSUSE Security Update : MozillaThunderbird (openSUSE-2020-2324)NessusSuSE Local Security Checks
medium
145317openSUSE Security Update : opera (openSUSE-2020-2359)NessusSuSE Local Security Checks
high
145294openSUSE Security Update : MozillaFirefox (openSUSE-2020-2325)NessusSuSE Local Security Checks
medium
145221Ubuntu 20.10 : Thunderbird vulnerabilities (USN-4701-1)NessusUbuntu Local Security Checks
high
144798Amazon Linux 2 : thunderbird (ALAS-2021-1586)NessusAmazon Linux Local Security Checks
high
144672Debian DSA-4824-1 : chromium - security updateNessusDebian Local Security Checks
high
144589GLSA-202012-20 : Mozilla Firefox, Mozilla Thunderbird: Multiple vulnerabilitiesNessusGentoo Local Security Checks
medium
144575SUSE SLES12 Security Update : MozillaFirefox (SUSE-SU-2020:3903-1)NessusSuSE Local Security Checks
medium
144571SUSE SLED15 / SLES15 Security Update : MozillaFirefox (SUSE-SU-2020:3902-1)NessusSuSE Local Security Checks
medium
144547CentOS 7 : thunderbird (CESA-2020:5618)NessusCentOS Local Security Checks
medium
144532SUSE SLED15 / SLES15 Security Update : MozillaFirefox (SUSE-SU-2020:3901-1)NessusSuSE Local Security Checks
medium
144512RHEL 8 : thunderbird (RHSA-2020:5644)NessusRed Hat Local Security Checks
high
144511RHEL 8 : thunderbird (RHSA-2020:5645)NessusRed Hat Local Security Checks
high
144487Fedora 32 : chromium (2020-5b9c42f1b9)NessusFedora Local Security Checks
high
144457Oracle Linux 8 : ELSA-2020-5624-1: / thunderbird (ELSA-2020-56241)NessusOracle Linux Local Security Checks
medium
144447Oracle Linux 7 : ELSA-2020-5618-1: / thunderbird (ELSA-2020-56181)NessusOracle Linux Local Security Checks
medium
144439Debian DLA-2497-1 : thunderbird security updateNessusDebian Local Security Checks
medium
144426Debian DSA-4815-1 : thunderbird - security updateNessusDebian Local Security Checks
medium
144422RHEL 8 : firefox (RHSA-2020:5562)NessusRed Hat Local Security Checks
medium
144416RHEL 8 : thunderbird (RHSA-2020:5624)NessusRed Hat Local Security Checks
medium
144413RHEL 8 : thunderbird (RHSA-2020:5622)NessusRed Hat Local Security Checks
medium
144406RHEL 8 : firefox (RHSA-2020:5563)NessusRed Hat Local Security Checks
medium
144403RHEL 8 : firefox (RHSA-2020:5565)NessusRed Hat Local Security Checks
medium
144397RHEL 7 : firefox (RHSA-2020:5561)NessusRed Hat Local Security Checks
medium
144386RHEL 7 : thunderbird (RHSA-2020:5618)NessusRed Hat Local Security Checks
medium
144381RHEL 8 : firefox (RHSA-2020:5564)NessusRed Hat Local Security Checks
medium
144374Oracle Linux 8 : ELSA-2020-5562-1: / firefox (ELSA-2020-55621)NessusOracle Linux Local Security Checks
medium
144368Scientific Linux Security Update : thunderbird on SL7.x x86_64 (2020:5618)NessusScientific Linux Local Security Checks
medium
144367Scientific Linux Security Update : firefox on SL7.x i686/x86_64 (2020:5561)NessusScientific Linux Local Security Checks
medium
144353Debian DSA-4813-1 : firefox-esr - security updateNessusDebian Local Security Checks
medium
144350Debian DLA-2496-1 : firefox-esr security updateNessusDebian Local Security Checks
medium
144340Oracle Linux 7 : ELSA-2020-5561-1: / firefox (ELSA-2020-55611)NessusOracle Linux Local Security Checks
medium
144299Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 20.10 : Firefox vulnerabilities (USN-4671-1)NessusUbuntu Local Security Checks
high
144285Mozilla Thunderbird < 78.6NessusMacOS X Local Security Checks
medium
144284Mozilla Thunderbird < 78.6NessusWindows
medium
144283Mozilla Firefox < 84.0NessusMacOS X Local Security Checks
high
144282Mozilla Firefox < 84.0NessusWindows
high
144278Mozilla Firefox ESR < 78.6NessusWindows
medium
144277Mozilla Firefox ESR < 78.6NessusMacOS X Local Security Checks
medium
144036Fedora 33 : chromium (2020-f43efd09e8)NessusFedora Local Security Checks
high
144020openSUSE Security Update : chromium (openSUSE-2020-2216)NessusSuSE Local Security Checks
high
143588Microsoft Edge (Chromium) < 87.0.664.57 Multiple VulnerabilitiesNessusWindows
high
143545openSUSE Security Update : chromium (openSUSE-2020-2181)NessusSuSE Local Security Checks
high
143517FreeBSD : chromium -- multiple vulnerabilities (01ffd06a-36ed-11eb-b655-3065ec8fd3ec)NessusFreeBSD Local Security Checks
high
143495GLSA-202012-05 : Chromium, Google Chrome: Multiple vulnerabilitiesNessusGentoo Local Security Checks
high
143471Google Chrome < 87.0.4280.88 Multiple VulnerabilitiesNessusWindows
high
143470Google Chrome < 87.0.4280.88 Multiple VulnerabilitiesNessusMacOS X Local Security Checks
high