Home

CVE-2020-16000

Description

Inappropriate implementation in Blink in Google Chrome prior to 86.0.4240.111 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

Risk Information

Base Score
8.8
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
1.753

Associated Vulnerability

VulnerabilityOS Platform
Vulnerabilities CVE-2020-15999, CVE-2020-16000, CVE-2020-16001, CVE-2020-16002, CVE-2020-16003 are fixed in Microsoft Edge for chromium business (86.0.622.51)Windows
Vulnerabilities CVE-2020-15999 *, CVE-2020-16000, CVE-2020-16001, CVE-2020-16002, CVE-2020-16003 are fixed in Microsoft Edge for chromium business (x64) (86.0.622.51)Windows
Vulnerabilities CVE-2020-16000,CVE-2020-16001,CVE-2020-16002,CVE-2020-15999,CVE-2020-16003 are fixed in Google Chrome For Mac (86.0.4240.111)Mac
(RHSA-2020:4351) chromium-browser security update chromium-browser-86.0.4240.111-1.el6_10.i686.rpmLinux
(RHSA-2020:4351) chromium-browser security update chromium-browser-86.0.4240.111-1.el6_10.x86_64.rpmLinux
chromium security update(DSA-4824-1) chromium_87.0.4280.88-0.4~deb10u1_i386.debLinux
chromium security update(DSA-4824-1) chromium_87.0.4280.88-0.4~deb10u1_amd64.debLinux

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-109333Microsoft Edge for chromium business (99.0.1150.30) (x86)
PATCH-109332Microsoft Edge for chromium business (99.0.1150.30) (x64)
PATCH-609673Google Chrome for Mac (132.0.6834.83, 132.0.6834.84)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234