CVE-2020-16043

CVE-2020-16043

Name

CVE-2020-16043

Description

Insufficient data validation in networking in Google Chrome prior to 87.0.4280.141 allowed a remote attacker to bypass discretionary access control via malicious network traffic.

NVD Severity

high

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
Permissions Required	https://crbug.com/1148309
Release Notes	https://chromereleases.googleblog.com/2021/01/stable-channel-update-for-desktop.html
Third Party Advisory	https://security.gentoo.org/glsa/202101-05
Third Party Advisory	https://www.debian.org/security/2021/dsa-4832
Mailing List	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VVUWIJKZTZTG6G475OR6PP4WPQBVM6PS/
Mailing List	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Z6P6AVVFP7B2M4H7TJQBASRZIBLOTUFN/

Type

URI

Permissions Required

https://crbug.com/1148309

Release Notes

https://chromereleases.googleblog.com/2021/01/stable-channel-update-for-desktop.html

Third Party Advisory

https://security.gentoo.org/glsa/202101-05

Third Party Advisory

https://www.debian.org/security/2021/dsa-4832

Mailing List

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VVUWIJKZTZTG6G475OR6PP4WPQBVM6PS/