Vulnerability Name:

CVE-2020-6457 (CCN-179626)

Assigned:2020-04-15
Published:2020-04-15
Updated:2022-10-05
Summary:Use after free in speech recognizer in Google Chrome prior to 81.0.4044.113 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page.
CVSS v3 Severity:9.6 Critical (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H)
8.3 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): Required
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
8.8 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H)
7.7 High (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): Required
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
CVSS v2 Severity:6.8 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
9.0 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): Single_Instance
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
Vulnerability Type:CWE-416
Vulnerability Consequences:Gain Access
References:Source: MITRE
Type: CNA
CVE-2020-6457

Source: CCN
Type: Google Chrome Releases Web site
Stable Channel Update for Desktop

Source: MISC
Type: Release Notes, Vendor Advisory
https://chromereleases.googleblog.com/2020/04/stable-channel-update-for-desktop_15.html

Source: MISC
Type: Permissions Required, Vendor Advisory
https://crbug.com/1067851

Source: XF
Type: UNKNOWN
google-chrome-cve20206457-code-exec(179626)

Source: DEBIAN
Type: Third Party Advisory
DSA-4714

Vulnerable Configuration:Configuration 1:
  • cpe:/a:google:chrome:*:*:*:*:*:*:*:* (Version < 81.0.4044.113)

    • Configuration 2:
  • cpe:/o:debian:debian_linux:9.0:*:*:*:*:*:*:*
  • OR cpe:/o:debian:debian_linux:10.0:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:20206457
    V
    		CVE-2020-6457
    2022-06-30
    oval:org.opensuse.security:def:112066
    P
    		chromedriver-93.0.4577.82-1.1 on GA media (Moderate)
    2022-01-17
    oval:org.opensuse.security:def:74685
    P
    		Security update for xorg-x11-server (Important)
    2021-12-14
    oval:org.opensuse.security:def:64631
    P
    		Security update for glib-networking (Important)
    2021-12-06
    oval:org.opensuse.security:def:64615
    P
    		Security update for the Linux Kernel (Important)
    2021-11-19
    oval:org.opensuse.security:def:64785
    P
    		Security update for fetchmail (Moderate)
    2021-10-20
    oval:org.opensuse.security:def:105615
    P
    		chromedriver-93.0.4577.82-1.1 on GA media (Moderate)
    2021-10-01
    oval:org.opensuse.security:def:64573
    P
    		Security update for openssl-1_1 (Low)
    2021-09-07
    oval:org.opensuse.security:def:64743
    P
    		Security update for c-ares (Important)
    2021-08-17
    oval:org.opensuse.security:def:74727
    P
    		Security update for the Linux Kernel (Important)
    2021-08-14
    oval:org.opensuse.security:def:63319
    P
    		apache2-mod_wsgi-python3-4.5.18-2.27 on GA media (Moderate)
    2021-08-10
    oval:org.opensuse.security:def:63361
    P
    		openssh-fips-8.4p1-1.30 on GA media (Moderate)
    2021-08-10
    oval:org.opensuse.security:def:63522
    P
    		tiff-4.0.9-5.30.28 on GA media (Moderate)
    2021-08-10
    oval:org.opensuse.security:def:62816
    P
    		libtag-devel-1.11.1-4.9.1 on GA media (Moderate)
    2021-08-09
    oval:org.opensuse.security:def:62823
    P
    		perl-MIME-Charset-1.012.2-1.24 on GA media (Moderate)
    2021-08-09
    oval:org.opensuse.security:def:63026
    P
    		ncurses-devel-32bit-6.1-5.6.2 on GA media (Moderate)
    2021-08-09
    oval:org.opensuse.security:def:62820
    P
    		newt-devel-0.52.20-5.35 on GA media (Moderate)
    2021-08-09
    oval:org.opensuse.security:def:100312
    P
    		 (Important)
    2021-07-20
    oval:org.opensuse.security:def:62848
    P
    		crash-7.2.1-1.22 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:62862
    P
    		mercurial-4.5.2-1.19 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:62858
    P
    		libgit2-26-0.26.3-1.26 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:62865
    P
    		ocaml-libguestfs-devel-1.38.0-3.52 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:63068
    P
    		reiserfs-kmp-default-4.12.14-23.1 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:64471
    P
    		Security update for xorg-x11-server (Important)
    2021-04-13
    oval:org.opensuse.security:def:64673
    P
    		Security update for ldb (Important)
    2021-03-24
    oval:org.opensuse.security:def:93599
    P
    		 (Important)
    2021-03-24
    oval:org.opensuse.security:def:64513
    P
    		Security update for perl-Convert-ASN1 (Moderate)
    2021-01-21
    oval:org.opensuse.security:def:63564
    P
    		NetworkManager-applet-1.8.10-3.39 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:62890
    P
    		bsh2-2.0.0.b6-3.102 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:64269
    P
    		Security update for python3 (Important)
    2020-12-02
    oval:org.opensuse.security:def:64363
    P
    		libpainter0 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:63940
    P
    		Security update for file-roller (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:74860
    P
    		Security update for opera (Important)
    2020-12-01
    oval:org.opensuse.security:def:64405
    P
    		libxerces-c-3_1 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:63669
    P
    		Security update for libjpeg-turbo (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:64227
    P
    		clamav on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:64364
    P
    		libpango-1_0-0 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:63711
    P
    		Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:64406
    P
    		libxkbcommon-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:63898
    P
    		Security update for dovecot22 (Important)
    2020-12-01
    oval:org.opensuse.security:def:74818
    P
    		Security update for chromium (Critical)
    2020-12-01
    oval:org.opensuse.security:def:110522
    P
    		Security update for opera (Important)
    2020-05-09
    oval:org.opensuse.security:def:110480
    P
    		Security update for chromium (Critical)
    2020-04-20
    BACK
    google chrome *
    debian debian linux 9.0
    debian debian linux 10.0