CVE-2020-15993: Use after free in printing

Q: What is the severity of CVE-2020-15993?

CVE-2020-15993 has a high severity rating, indicating a significant risk for potential exploitation.

Q: How do I fix CVE-2020-15993?

To fix CVE-2020-15993, users should update Google Chrome to version 86.0.4240.99 or later.

Q: Who is affected by CVE-2020-15993?

CVE-2020-15993 affects users of Google Chrome prior to version 86.0.4240.99.

Q: Can CVE-2020-15993 be exploited remotely?

Yes, CVE-2020-15993 can potentially be exploited remotely via a specially crafted HTML page.

Q: What types of attacks can CVE-2020-15993 enable?

CVE-2020-15993 can enable heap corruption attacks, which may lead to further exploitation of the system.

Published Oct 1, 2020

Updated

Use after free in printing in Google Chrome prior to 86.0.4240.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

Credit

Khalil Zhani

Affected Software

4 affected componentsFixes available

All of the following

Google Chrome<86.0.4240.99

86.0.4240.99

Google Android*

Google Chrome<86.0.4240.99

Google Android

Event History

Oct 1, 2020

CVE Published

12:00 AM

Nov 3, 2020

CVE Published

via MITRE·02:21 AM

Data Sourced

via MITRE·02:21 AM

DescriptionWeakness

Parent advisories

This vulnerability appears in the following advisories.

2509954079155194578

Peer vulnerabilities

Found alongside the following vulnerabilities.

Frequently Asked Questions

What is the severity of CVE-2020-15993?

CVE-2020-15993 has a high severity rating, indicating a significant risk for potential exploitation.

How do I fix CVE-2020-15993?

To fix CVE-2020-15993, users should update Google Chrome to version 86.0.4240.99 or later.

Who is affected by CVE-2020-15993?