Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2020-6380

Опубликовано: 16 янв. 2020
Источник: redhat
CVSS3: 8.8

Описание

Insufficient policy enforcement in extensions in Google Chrome prior to 79.0.3945.130 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted Chrome Extension.

Ссылки на источники

Дополнительная информация

Статус:

Important
Дефект:
CWE-20
https://bugzilla.redhat.com/show_bug.cgi?id=1793537chromium-browser: extension message verification error

8.8 High

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2020-6380

CVSS3: 8.8
ubuntu
почти 6 лет назад

Insufficient policy enforcement in extensions in Google Chrome prior to 79.0.3945.130 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted Chrome Extension.

nvd логотип

CVE-2020-6380

CVSS3: 8.8
nvd
почти 6 лет назад

Insufficient policy enforcement in extensions in Google Chrome prior to 79.0.3945.130 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted Chrome Extension.

debian логотип

CVE-2020-6380

CVSS3: 8.8
debian
почти 6 лет назад

Insufficient policy enforcement in extensions in Google Chrome prior t ...

github логотип

GHSA-vhfr-653c-g79j

github
больше 3 лет назад

Insufficient policy enforcement in extensions in Google Chrome prior to 79.0.3945.130 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted Chrome Extension.

fstec логотип

BDU:2021-01063

CVSS3: 8.8
fstec
около 6 лет назад

Уязвимость расширений веб-браузера Google Chrome, позволяющая нарушителю обойти существующие ограничения безопасности

8.8 High

CVSS3