CVE-2020-15959
MEDIUM4.3EPSS 0.88%chromium - security update
Published: 9/21/2020Modified: 4/28/2026
Description
Insufficient policy enforcement in networking in Google Chrome prior to 85.0.4183.102 allowed an attacker who convinced the user to enable logging to obtain potentially sensitive information from process memory via social engineering.
Affected packages (2)
- Debian/chromiumfrom 0, < 87.0.4280.88-0.1
- Debian/chromiumfrom 0, < 87.0.4280.88-0.4~deb10u1
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM4.3 | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N |