Heap buffer overflow in Skia in Google Chrome prior to 87.0.4280.141 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
https://chromereleases.googleblog.com/2021/01/stable-channel-update-for-desktop.html
Source: MITRE
Published: 2021-01-08
Updated: 2021-01-28
Type: CWE-787
Base Score: 6.8
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Impact Score: 6.4
Exploitability Score: 8.6
Severity: MEDIUM
Base Score: 8.8
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Impact Score: 5.9
Exploitability Score: 2.8
Severity: HIGH
OR
OR
OR
ID | Name | Product | Family | Severity |
---|---|---|---|---|
145388 | Fedora 32 : chromium (2021-d9faeff8eb) | Nessus | Fedora Local Security Checks | high |
145383 | openSUSE Security Update : opera (openSUSE-2021-138) | Nessus | SuSE Local Security Checks | high |
145308 | openSUSE Security Update : chromium (openSUSE-2021-41) | Nessus | SuSE Local Security Checks | high |
145306 | openSUSE Security Update : opera (openSUSE-2021-139) | Nessus | SuSE Local Security Checks | high |
145304 | openSUSE Security Update : chromium (openSUSE-2021-40) | Nessus | SuSE Local Security Checks | high |
145194 | Debian DSA-4832-1 : chromium - security update | Nessus | Debian Local Security Checks | high |
145131 | Fedora 33 : chromium (2021-79926272ce) | Nessus | Fedora Local Security Checks | high |
144833 | GLSA-202101-05 : Chromium, Google Chrome: Multiple vulnerabilities | Nessus | Gentoo Local Security Checks | high |
144823 | FreeBSD : chromium -- multiple vulnerabilities (d153c4d2-50f8-11eb-8046-3065ec8fd3ec) | Nessus | FreeBSD Local Security Checks | high |
144809 | Microsoft Edge (Chromium) < 87.0.664.75 Multiple Vulnerabilities | Nessus | Windows | high |
144782 | Google Chrome < 87.0.4280.141 Multiple Vulnerabilities | Nessus | MacOS X Local Security Checks | high |
144781 | Google Chrome < 87.0.4280.141 Multiple Vulnerabilities | Nessus | Windows | high |