Vulnerability Name:

CVE-2020-6458 (CCN-180180)

Assigned:2020-04-21
Published:2020-04-21
Updated:2022-10-05
Summary:Out of bounds read and write in PDFium in Google Chrome prior to 81.0.4044.122 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file.
CVSS v3 Severity:8.8 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H)
7.7 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): Required
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
8.8 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H)
7.7 High (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): Required
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
CVSS v2 Severity:6.8 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
9.0 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): Single_Instance
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
Vulnerability Type:CWE-125
CWE-787
Vulnerability Consequences:Gain Access
References:Source: MITRE
Type: CNA
CVE-2020-6458

Source: CCN
Type: Google Chrome Releases Web site
Stable Channel Update for Desktop

Source: MISC
Type: Release Notes, Vendor Advisory
https://chromereleases.googleblog.com/2020/04/stable-channel-update-for-desktop_21.html

Source: MISC
Type: Permissions Required, Vendor Advisory
https://crbug.com/1067270

Source: XF
Type: UNKNOWN
google-chrome-cve20206458-code-exec(180180)

Source: DEBIAN
Type: Third Party Advisory
DSA-4714

Source: MISC
Type: Third Party Advisory
https://www.talosintelligence.com/vulnerability_reports/TALOS-2020-1044

Vulnerable Configuration:Configuration 1:
  • cpe:/a:google:chrome:*:*:*:*:*:*:*:* (Version < 81.0.4044.122)

    • Configuration 2:
  • cpe:/o:debian:debian_linux:9.0:*:*:*:*:*:*:*
  • OR cpe:/o:debian:debian_linux:10.0:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:20206458
    V
    		CVE-2020-6458
    2022-06-30
    oval:org.opensuse.security:def:93603
    P
    		 (Important)
    2022-04-12
    oval:org.opensuse.security:def:112066
    P
    		chromedriver-93.0.4577.82-1.1 on GA media (Moderate)
    2022-01-17
    oval:org.opensuse.security:def:64615
    P
    		Security update for the Linux Kernel (Important)
    2021-11-19
    oval:org.opensuse.security:def:64601
    P
    		Security update for wireguard-tools (Moderate)
    2021-10-26
    oval:org.opensuse.security:def:64785
    P
    		Security update for fetchmail (Moderate)
    2021-10-20
    oval:org.opensuse.security:def:105615
    P
    		chromedriver-93.0.4577.82-1.1 on GA media (Moderate)
    2021-10-01
    oval:org.opensuse.security:def:64771
    P
    		Security update for gd (Moderate)
    2021-09-27
    oval:org.opensuse.security:def:100316
    P
    		 (Important)
    2021-08-14
    oval:org.opensuse.security:def:74727
    P
    		Security update for the Linux Kernel (Important)
    2021-08-14
    oval:org.opensuse.security:def:63347
    P
    		libsaml-devel-3.1.0-1.27 on GA media (Moderate)
    2021-08-10
    oval:org.opensuse.security:def:63361
    P
    		openssh-fips-8.4p1-1.30 on GA media (Moderate)
    2021-08-10
    oval:org.opensuse.security:def:100313
    P
    		 (Moderate)
    2021-07-21
    oval:org.opensuse.security:def:74713
    P
    		Security update for go1.15 (Moderate)
    2021-06-18
    oval:org.opensuse.security:def:62876
    P
    		perl-doc-5.26.1-5.41 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:62862
    P
    		mercurial-4.5.2-1.19 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:62844
    P
    		bsdtar-3.3.2-1.27 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:62851
    P
    		cvs-1.12.12-2.30 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:62858
    P
    		libgit2-26-0.26.3-1.26 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:63550
    P
    		libpskc-devel-2.6.2-1.15 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:62865
    P
    		ocaml-libguestfs-devel-1.38.0-3.52 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:63068
    P
    		reiserfs-kmp-default-4.12.14-23.1 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:62848
    P
    		crash-7.2.1-1.22 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:93600
    P
    		 (Low)
    2021-03-29
    oval:org.opensuse.security:def:64673
    P
    		Security update for ldb (Important)
    2021-03-24
    oval:org.opensuse.security:def:64659
    P
    		Security update for grub2 (Important)
    2021-03-02
    oval:org.opensuse.security:def:64513
    P
    		Security update for perl-Convert-ASN1 (Moderate)
    2021-01-21
    oval:org.opensuse.security:def:64499
    P
    		Security update for dnsmasq (Important)
    2021-01-19
    oval:org.opensuse.security:def:63564
    P
    		NetworkManager-applet-1.8.10-3.39 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:62890
    P
    		bsh2-2.0.0.b6-3.102 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:63054
    P
    		libnss_slurm2-20.02.3-1.7 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:64269
    P
    		Security update for python3 (Important)
    2020-12-02
    oval:org.opensuse.security:def:64391
    P
    		libtag1 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:63940
    P
    		Security update for file-roller (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:74860
    P
    		Security update for opera (Important)
    2020-12-01
    oval:org.opensuse.security:def:64405
    P
    		libxerces-c-3_1 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:63697
    P
    		Security update for wireshark (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:64255
    P
    		g3utils on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:64392
    P
    		libtasn1 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:63711
    P
    		Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:64406
    P
    		libxkbcommon-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:63926
    P
    		Security update for apache2 (Important)
    2020-12-01
    oval:org.opensuse.security:def:74846
    P
    		Security update for chromium (Important)
    2020-12-01
    oval:org.opensuse.security:def:110522
    P
    		Security update for opera (Important)
    2020-05-09
    oval:org.opensuse.security:def:110508
    P
    		Security update for chromium (Important)
    2020-05-03
    BACK
    google chrome *
    debian debian linux 9.0
    debian debian linux 10.0