PT-2021-9849 · Google · Google Chrome

Published

2021-01-14

Updated

2021-03-18

CVE-2020-16045

CVSS v3.1

9.6

Critical

Vector

AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Google Chrome on Android versions prior to 87.0.4280.66

Description The issue allows a remote attacker who has compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. This is due to a Use after Free in Payments.

Recommendations For Google Chrome on Android versions prior to 87.0.4280.66, update to version 87.0.4280.66 or later to resolve the issue.

Fix

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

CVE-2020-16045

Affected Products

Google Chrome

PT-2021-9849 · Google · Google Chrome

CVE-2020-16045

Weakness Enumeration

Related Identifiers

Affected Products

References · 7