vulnerability

FreeBSD: VID-9A447F78-D0F8-11EA-9837-E09467587C17 (CVE-2020-6541): chromium -- multiple vulnerabilities

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:N/AC:M/Au:N/C:P/I:P/A:P)	Jul 27, 2020	Jul 29, 2020	Oct 20, 2020

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:P/A:P)

Published

Jul 27, 2020

Added

Jul 29, 2020

Modified

Oct 20, 2020

Description

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From VID-9A447F78-D0F8-11EA-9837-E09467587C17:

Chrome Releases reports:

This update contains 8 security fixes, including:

[1105318] High CVE-2020-6537: Type Confusion in V8. Reported by

Alphalaab on 2020-07-14

[1096677] High CVE-2020-6538: Inappropriate implementation in

WebView. Reported by Yongke Wang(@Rudykewang) and Aryb1n(@aryb1n)

of Tencent Security Xuanwu Lab on 2020-06-18

[1104061] High CVE-2020-6532: Use after free in SCTP. Reported

by Anonymous on 2020-07-09

[1105635] High CVE-2020-6539: Use after free in CSS. Reported

by Oriol Brufau on 2020-07-14

[1105720] High CVE-2020-6540: Heap buffer overflow in Skia.

Reported by Zhen Zhou of NSFOCUS Security Team on 2020-07-15

[1106773] High CVE-2020-6541: Use after free in WebUSB. Reported

by Sergei Glazunov of Google Project Zero on 2020-07-17

Solution

freebsd-upgrade-package-chromium

References

NVD-CVE-2020-6541

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today