GHSA-4gh8-r36v-mwv7

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.6

Описание

Use after free in speech recognizer in Google Chrome prior to 81.0.4044.113 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page.

Ссылки

EPSS

Процентиль: 77%

0.01062

Низкий

9.6 Critical

CVSS3

CVE ID

CVE-2020-6457

Дефекты

CWE-416

Связанные уязвимости

CVE-2020-6457

CVSS3: 9.6

ubuntu

больше 5 лет назад

Use after free in speech recognizer in Google Chrome prior to 81.0.4044.113 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page.

CVE-2020-6457

CVSS3: 9.6

redhat

почти 6 лет назад

Use after free in speech recognizer in Google Chrome prior to 81.0.4044.113 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page.

CVE-2020-6457

CVSS3: 9.6

nvd

больше 5 лет назад

Use after free in speech recognizer in Google Chrome prior to 81.0.4044.113 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page.

CVE-2020-6457

CVSS3: 9.6

debian

больше 5 лет назад

Use after free in speech recognizer in Google Chrome prior to 81.0.404 ...

openSUSE-SU-2020:0541-1

suse-cvrf

почти 6 лет назад

Security update for chromium

EPSS

Процентиль: 77%

0.01062

Низкий

9.6 Critical

CVSS3

CVE ID

CVE-2020-6457

Дефекты

CWE-416