Vulnerability   
Search   
    Search 187964 CVE descriptions
and 85075 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.817275
Category:General
Title:Google Chrome Security Updates(stable-channel-update-for-desktop_25-2020-08)-Windows
Summary:The host is installed with Google Chrome; and is prone to multiple vulnerabilities.
Description:Summary:
The host is installed with Google Chrome
and is prone to multiple vulnerabilities.

Vulnerability Insight:
Multiple flaws exists due to

- Insufficient policy enforcement in iOS.

- Use after free in presentation API.

- Insufficient policy enforcement in autofill.

- Inappropriate implementation in Content Security Policy.

- Insufficient policy enforcement in Blink.

- Insufficient policy enforcement in intent handling.

- Incorrect security UI in permissions.

- Incorrect security UI in Omnibox.

- Insufficient policy enforcement in media.

- Insufficient validation of untrusted input in command line handling.

- Integer overflow in WebUSB.

- Side-channel information leakage in WebRTC.

Vulnerability Impact:
Successful exploitation allows attackers to
execute arbitrary code, disclose sensitive information and cause denial of service
condition.

Affected Software/OS:
Google Chrome version prior to 85.0.4183.83 on Windows

Solution:
Upgrade to Google Chrome version 85.0.4183.83 or later.
Please see the references for more information.

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:P

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2020-6558
https://chromereleases.googleblog.com/2020/08/stable-channel-update-for-desktop_25.html
https://crbug.com/1109120
SuSE Security Announcement: openSUSE-SU-2020:1499 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00072.html
SuSE Security Announcement: openSUSE-SU-2020:1510 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00078.html
SuSE Security Announcement: openSUSE-SU-2020:1514 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00081.html
Common Vulnerability Exposure (CVE) ID: CVE-2020-6559
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EE7XWIZBME7JAY7N6CGPET4CLNHHEIVT/
https://crbug.com/1116706
Common Vulnerability Exposure (CVE) ID: CVE-2020-6560
https://crbug.com/1108181
Common Vulnerability Exposure (CVE) ID: CVE-2020-6561
https://crbug.com/932892
Common Vulnerability Exposure (CVE) ID: CVE-2020-6562
https://crbug.com/1086845
Common Vulnerability Exposure (CVE) ID: CVE-2020-6563
https://crbug.com/1104628
Common Vulnerability Exposure (CVE) ID: CVE-2020-6564
https://crbug.com/841622
Common Vulnerability Exposure (CVE) ID: CVE-2020-6565
https://crbug.com/1029907
Common Vulnerability Exposure (CVE) ID: CVE-2020-6566
https://crbug.com/1065264
Common Vulnerability Exposure (CVE) ID: CVE-2020-6567
https://crbug.com/937179
Common Vulnerability Exposure (CVE) ID: CVE-2020-6568
https://crbug.com/1092451
Common Vulnerability Exposure (CVE) ID: CVE-2020-6569
https://crbug.com/995732
Common Vulnerability Exposure (CVE) ID: CVE-2020-6570
https://crbug.com/1084699
Common Vulnerability Exposure (CVE) ID: CVE-2020-6571
https://crbug.com/1085315
CopyrightCopyright (C) 2020 Greenbone Networks GmbH

This is only one of 85075 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2020 E-Soft Inc. All rights reserved.