CVE-2019-13720
published 2019-11-25CVE-2019-13720: Use after free in WebAudio in Google Chrome prior to 78.0.3904.87 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
PriorityP189high8.8CVSS 3.1
AVNACLPRNUIRSUCHIHAH
KEVITWEXPLOIT
CISA Known Exploited Vulnerabilitydue 2022-06-13
Exploited in the wild
EPSS
72.98%
99.4th percentile
Use after free in WebAudio in Google Chrome prior to 78.0.3904.87 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| chromium | chromium | >= 0 < 78.0.3904.87-1 | 78.0.3904.87-1 |
| chromium | chromium | >= 0 < 78.0.3904.87-1 | 78.0.3904.87-1 |
| chromium | chromium | >= 0 < 78.0.3904.87-1 | 78.0.3904.87-1 |
| chromium | chromium | >= 0 < 78.0.3904.87-1 | 78.0.3904.87-1 |
| debian | chromium | < chromium 78.0.3904.87-1 (bookworm) | chromium 78.0.3904.87-1 (bookworm) |
| chrome | < 78.0.3904.87 | 78.0.3904.87 | |
| chrome | >= unspecified < 78.0.3904.87 | 78.0.3904.87 | |
| chrome_chrome | — | — | |
| opensuse | leap | — | — |
Detection & IOCsextracted from sources · hover to see the quote
snort↗
SID 52068
snort↗
SID 52069
- →For persistence, the malware installs tasks in Windows Task Scheduler; hunt for scheduled tasks created by msdisp64.exe or updata.exe. ↗
- →The exploit uses WebAssembly (WASM) JIT pages with RWX permissions to execute shellcode; detection can look for Chrome renderer processes writing shellcode to RWX WASM pages. ↗
- →The C2 next-stage modules are placed in folders named after victim computer names on the C2 server; hunting for outbound connections from msdisp64.exe to hardcoded C2 servers can identify infected hosts. ↗
- ·The exploit only targets Chrome versions 76.0.3809.87 and 77.0.3865.75 specifically; it includes version checks to prevent execution on other versions (including 78) to avoid crashes, so detections tied to version checks may miss future variants. ↗
- ·The exploit code is heavily obfuscated; the .charlie.XXXXXXXX.js filename pattern uses random characters (XXXXXXXX), so static filename matching alone is insufficient. ↗
- ·Attribution is uncertain; there are weak code similarities with Lazarus but these could be false flags, and the targeting profile also aligns with DarkHotel. ↗
- ·The PartitionAlloc FreeList mitigation (byteswapping freed pointers) was bypassed by the exploit; detections relying solely on heap corruption signals may not fire before exploitation completes. ↗
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
osv8.8HIGH
vulncheck8.8HIGH
cisa8.8HIGH
vendor_debian8.8HIGH
vendor_redhat8.8HIGH
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-3qg6-gw2x-w9cq: Use after free in WebAudio in Google Chrome prior to 78
ghsa_unreviewed·2022-05-24
CVE-2019-13720 [MEDIUM] CWE-416 GHSA-3qg6-gw2x-w9cq: Use after free in WebAudio in Google Chrome prior to 78
Use after free in WebAudio in Google Chrome prior to 78.0.3904.87 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Project0
The More You Know, The More You Know You Don’t Know - Project Zero
project_zero·2022-04-01
CVE-2016-4654 The More You Know, The More You Know You Don’t Know - Project Zero
A Year in Review of 0-days Used In-the-Wild in 2021
Posted by Maddie Stone, Google Project Zero
This is our third annual year in review of 0-days exploited in-the-wild [2020, 2019]. Each year we’ve looked back at all of the detected and disclosed in-the-wild 0-days as a group and synthesized what we think the trends and takeaways are. The goal of this report is not to detail each individual exploit, but instead to analyze the exploits from the year as a group, looking for trends, gaps, lessons learned, successes, etc. If you’re interested in the analysis of individual exploits, please check out our root cause analysis repository.
We perform and share this analysis in order to make 0-day hard. We want it to be more costly, more resource intensive, and overall more difficult for
Project0
Root Cause Analyses for 0-day In-the-Wild Exploits - Project Zero
project_zero·2020-07-01
CVE-2019-1107 Root Cause Analyses for 0-day In-the-Wild Exploits - Project Zero
Posted by Maddie Stone, Project Zero
When a 0-day is exploited in the wild AND it is detected, we need to use that as an opportunity to learn as much as possible about the vulnerability and the exploit if we hope to make 0-day hard. One of the main methods to do that is to perform a root cause analysis (RCA) on the 0-day.
Our effort on this began in earnest in the last quarter of 2019. Today we are beginning to publish the root cause analyses for 0-days exploited in the wild that we have completed. While we’re publishing some in bulk now to play “catch-up”, in the future we plan to post each one in a timely manner after it’s detected and disclosed. We think publishing technical details in a timely manner is important for transparency and so that the whole of the security community can
Project0
Detection Deficit: A Year in Review of 0-days Used In-The-Wild in 2019 - Project Zero
project_zero·2020-07-01
CVE-2016-5195 Detection Deficit: A Year in Review of 0-days Used In-The-Wild in 2019 - Project Zero
Posted by Maddie Stone, Project Zero
In May 2019, Project Zero released our tracking spreadsheet for 0-days used “in the wild” and we started a more focused effort on analyzing and learning from these exploits. This is another way Project Zero is trying to make zero-day hard. This blog post synthesizes many of our efforts and what we’ve seen over the last year. We provide a review of what we can learn from 0-day exploits detected as used in the wild in 2019. In conjunction with this blog post, we are also publishing another blog post today about our root cause analysis work that informed the conclusions in this Year in Review. We are also releasing 8 root cause analyses that we have done for in-the-wild 0-days from 2019.
When I had the idea for this “Year in Review” blog post, I immedi
Project0
TFW you-get-really-excited-you-patch-diffed-a-0day-used-in-the-wild-but-then-find-out-it-is-the-wrong-vuln - Project Zero
project_zero·2020-04-01·CVSS 7.8
CVE-2016-7255 [HIGH] TFW you-get-really-excited-you-patch-diffed-a-0day-used-in-the-wild-but-then-find-out-it-is-the-wrong-vuln - Project Zero
Posted by Maddie Stone, Project Zero
INTRODUCTION
I’m really interested in 0-days exploited in the wild and what we, the security community, can learn about them to make 0-day hard. I explained some of Project Zero’s ideas and goals around in-the-wild 0-days in a November blog post.
On December’s Patch Tuesday, I was immediately intrigued by CVE-2019-1458, a Win32k Escalation of Privilege (EoP), said to be exploited in the wild and discovered by Anton Ivanov and Alexey Kulaev of Kaspersky Lab. Later that day, Kaspersky published a blog post on the exploit. The blog post included details about the exploit, but only included partial details on the vulnerability. My end goal was to do variant analysis on the vulnerability, but without full and accurate details about the vulnerability, I n
OSV
CVE-2019-13720: Use after free in WebAudio in Google Chrome prior to 78
osv·2019-11-25·CVSS 8.8
CVE-2019-13720 [HIGH] CVE-2019-13720: Use after free in WebAudio in Google Chrome prior to 78
Use after free in WebAudio in Google Chrome prior to 78.0.3904.87 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
VulnCheck
Google Chrome WebAudio Use-After-Free Vulnerability
vulncheck·2019·CVSS 8.8
CVE-2019-13720 [HIGH] CWE-416 Google Chrome WebAudio Use-After-Free Vulnerability
Google Chrome WebAudio Use-After-Free Vulnerability
Google Chrome WebAudio contains a use-after-free vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Affected: Google Chrome WebAudio
Required Action: Apply updates per vendor instructions.
Exploitation References: https://docs.google.com/spreadsheets/d/1lkNJ0uQwbeC1ZTRrxdtuPLCIl7mlUreoKfSIgajnSyY/edit; https://securelist.com/chrome-0-day-exploit-cve-2019-13720-used-in-operation-wizardopium/94866/; https://go.crowdstrike.com/rs/281-OBQ-266/images/Report2020CrowdStrikeGlobalThreatReport.pdf; https://www.cisa.gov/sites/default/files/feeds/known_exploited_vulnerabilities.json; https://www.fortinet.com/content/dam/fortinet/assets/threat-reports/threat-landscape-report-2h-2023.pdf
Ex
Project0
Project Zero RCA: CVE-2019-13720: Chrome use-after-free in webaudio
project_zero·CVSS 8.8
CVE-2019-13720 [HIGH] Project Zero RCA: CVE-2019-13720: Chrome use-after-free in webaudio
# CVE-2019-13720: Chrome use-after-free in webaudio
*Sergei Glazunov & Maddie Stone, Project Zero (Originally posted on [Project Zero blog](https://googleprojectzero.blogspot.com/p/rca.html) 2020-07-27)*
## The Basics
**Disclosure or Patch Date:** 31 October 2019
**Product:** Google Chrome
**Advisory:** https://chromereleases.googleblog.com/2019/10/stable-channel-update-for-desktop_31.html
**Affected Versions:** Chrome 76 - 78.0.3904.70
**First Patched Version:** Chrome 78.0.3904.87
**Issue/Bug Report:** https://bugs.chromium.org/p/chromium/issues/detail?id=1019226
**Patch CL:** https://chromium-review.googlesource.com/c/chromium/src/+/1888103
**Bug-Introducing CL:** https://chromium-review.googlesource.com/c/chromium/src/+/1077713/
**Reporter(s):** Anton Ivanov and Alexey Kulaev
Project0
Project Zero RCA: CVE-2019-1458: Windows win32k uninitialized variable in task switching
project_zero·CVSS 7.8
CVE-2019-1458 [HIGH] Project Zero RCA: CVE-2019-1458: Windows win32k uninitialized variable in task switching
# CVE-2019-1458: Windows win32k uninitialized variable in task switching
*Maddie Stone, Project Zero (Originally posted on [Project Zero blog](https://googleprojectzero.blogspot.com/p/rca.html) 2020-07-27)*
## The Basics
**Disclosure or Patch Date:** 10 December 2019
**Product:** Microsoft Windows
**Advisory:** https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1458
**Affected Versions:**
* For Windows 10 1607 x64, [KB4525236](https://support.microsoft.com/en-us/help/4525236/windows-10-update-kb4525236) and previous
* For Windows 7 x64, [KB4525233](https://support.microsoft.com/en-us/help/4525233/windows-7-update-kb4525233) and previous
**First Patched Version:**
* For Windows 10 1607 x64, [KB4530689](https://support.microsoft.com/en-us/help/4530689/windows
Project0
Project Zero RCA: CVE-2021-37975: Chrome v8 garbage collector logic bug causing live objects to be collected
project_zero·CVSS 8.8
CVE-2021-37975 [HIGH] Project Zero RCA: CVE-2021-37975: Chrome v8 garbage collector logic bug causing live objects to be collected
# CVE-2021-37975: Chrome v8 garbage collector logic bug causing live objects to be collected
*Man Yue Mo, GitHub Security Lab*
## The Basics
**Disclosure or Patch Date:** 30 September 2021
**Product:** Google Chrome
**Advisory:** https://chromereleases.googleblog.com/2021/09/stable-channel-update-for-desktop_30.html
**Affected Versions:** pre 94.0.4606.71
**First Patched Version:** 94.0.4606.71
**Issue/Bug Report:** https://bugs.chromium.org/p/chromium/issues/detail?id=1252918
**Patch CL:** https://chromium.googlesource.com/v8/v8.git/+/1054ee7f349d6be22e9518cf9b794b206d0e5818
**Bug-Introducing CL:** N/A
**Reporter(s):** Anonymous
## The Code
**Proof-of-concept:**
```js
var initKey = {init : 1};
var level = 4;
var map1 = new WeakMap();
function hideWeakMap(map, level, initKey)
CISA
Google Chrome WebAudio Use-After-Free Vulnerability
cisa·2022-05-23·CVSS 8.8
CVE-2019-13720 [HIGH] CWE-416 Google Chrome WebAudio Use-After-Free Vulnerability
Vulnerability: Google Chrome WebAudio Use-After-Free Vulnerability
Affected: Google Chrome WebAudio
Google Chrome WebAudio contains a use-after-free vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Required Action: Apply updates per vendor instructions.
Notes: https://nvd.nist.gov/vuln/detail/CVE-2019-13720
Remediation Due Date: 2022-06-13
Chrome
Stable Channel Update for Desktop: CVE-2019-13721
vendor_chrome·2019-10-31·CVSS 8.8
CVE-2019-13721 [HIGH] Stable Channel Update for Desktop: CVE-2019-13721
Stable Channel Update for Desktop
CVE-2019-13721: Use-after-free in PDFium. Reported by banananapenguin on 2019-10-12
[$TBD][ 1019226 ] High CVE-2019-13720: Use-after-free in audio
Reported by Anton Ivanov and Alexey Kulaev at Kaspersky Labs on 2019-10-29
Severity: high
Red Hat
chromium-browser: use-after-free in audio
vendor_redhat·2019-10-29·CVSS 8.8
CVE-2019-13720 [HIGH] CWE-416 chromium-browser: use-after-free in audio
chromium-browser: use-after-free in audio
Use after free in WebAudio in Google Chrome prior to 78.0.3904.87 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Debian
CVE-2019-13720: chromium - Use after free in WebAudio in Google Chrome prior to 78.0.3904.87 allowed a remo...
vendor_debian·2019·CVSS 8.8
CVE-2019-13720 [HIGH] CVE-2019-13720: chromium - Use after free in WebAudio in Google Chrome prior to 78.0.3904.87 allowed a remo...
Use after free in WebAudio in Google Chrome prior to 78.0.3904.87 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Scope: local
bookworm: resolved (fixed in 78.0.3904.87-1)
bullseye: resolved (fixed in 78.0.3904.87-1)
forky: resolved (fixed in 78.0.3904.87-1)
sid: resolved (fixed in 78.0.3904.87-1)
trixie: resolved (fixed in 78.0.3904.87-1)
No detection rules found.
Tenable
CVE-2020-15999, CVE-2020-17087: Google Chrome FreeType and Microsoft Windows Kernel Zero Days Exploited in the Wild
blogs_tenable·2020-11-02·CVSS 9.6
[CRITICAL] CVE-2020-15999, CVE-2020-17087: Google Chrome FreeType and Microsoft Windows Kernel Zero Days Exploited in the Wild
## Cloud Exposure
Tenable Cloud Security (CNAPP) Request a demo
Tenable Cloud Vulnerability Management Request a demo
Tenable CIEM Request a demo
Secure your cloud
## Vulnerability Exposure
Tenable Vulnerability Management Try for free
Tenable Security Center Request a demo
Tenable Web App Scanning Try for free
Tenable Patch Management Request a demo
Tenable Enclave Security Request a demo
Tenable Attack Surface Management Request a demo
Tenable Nessus Try for free
## AI Exposure
Tenable AI Exposure Request a demo
## OT/IoT Exposure
Tenable OT Security Request a demo
## Identity Exposure
Tenable Identity Exposure Request a demo
## Business needs
Active Directory
AI Security Posture Management (AI-SPM)
AWS security
Azure security
Cloud Security Posture Man
Securelist
The zero-day exploits of Operation WizardOpium
blogs_securelist·2020-05-28·CVSS 8.8
[HIGH] The zero-day exploits of Operation WizardOpium
Table of Contents
- Google Chrome remote code execution exploit
- Microsoft Windows elevation of privilege exploit
- Conclusions
Authors
- Boris Larin
- Alexey Kulaev
Back in October 2019 we detected a classic watering-hole attack on a North Korea-related news site that exploited a chain of Google Chrome and Microsoft Windows zero-days. While we’ve already published blog posts briefly describing this operation (available here and here), in this blog post we’d like to take a deep technical dive into the exploits and vulnerabilities used in this attack.
## Google Chrome remote code execution exploit
In the original blog post we described the exploit loader responsible for initial validation of the target and execution of the next stage JavaScript code containing the full browser explo
Securelist
The zero-day exploits of Operation WizardOpium
blogs_securelist·2020-05-28·CVSS 8.8
[HIGH] The zero-day exploits of Operation WizardOpium
Table of Contents
Google Chrome remote code execution exploit
Microsoft Windows elevation of privilege exploit
Conclusions
Authors
Boris Larin
Alexey Kulaev
Back in October 2019 we detected a classic watering-hole attack on a North Korea-related news site that exploited a chain of Google Chrome and Microsoft Windows zero-days. While we’ve already published blog posts briefly describing this operation (available here and here ), in this blog post we’d like to take a deep technical dive into the exploits and vulnerabilities used in this attack.
## Google Chrome remote code execution exploit
In the original blog post we described the exploit loader responsible for initial validation of the target and execution of the next stage JavaScript code containing the full browser exploit. The
Krebs
Patch Tuesday, November 2019 Edition
blogs_krebs·2019-11-12·CVSS 7.5
[HIGH] Patch Tuesday, November 2019 Edition
Microsoft today released updates to plug security holes in its software, including patches to fix at least 74 weaknesses in various flavors of Windows and programs that run on top of it. The November updates include patches for a zero-day flaw in Internet Explorer that is currently being exploited in the wild, as well as a sneaky bug in certain versions of Office for Mac that bypasses security protections and was detailed publicly prior to today’s patches.
Perhaps the most concerning of those critical holes is a zero-day flaw in Internet Exploder Explorer (CVE-2019-1429) that has already seen active exploitation. Today’s updates also address two other critical vulnerabilities in the same Windows component that handles various scripting languages.
Microsoft also fixed a flaw in Microsoft
Krebs
Patch Tuesday, November 2019 Edition
blogs_krebs·2019-11-12·CVSS 7.5
[HIGH] Patch Tuesday, November 2019 Edition
Microsoft today released updates to plug security holes in its software, including patches to fix at least 74 weaknesses in various flavors of Windows and programs that run on top of it. The November updates include patches for a zero-day flaw in Internet Explorer that is currently being exploited in the wild, as well as a sneaky bug in certain versions of Office for Mac that bypasses security protections and was detailed publicly prior to today’s patches.
More than a dozen of the flaws tackled in this month’s release are rated “critical,” meaning they involve weaknesses that could be exploited to install malware without any action on the part of the user, except for perhaps browsing to a hacked or malicious Web site or opening a booby-trapped file attachment.
Perhaps the most concerning
Talos
Threat Source newsletter (Nov. 7, 2019)
blogs_talos·2019-11-07
Threat Source newsletter (Nov. 7, 2019)
## Threat Source newsletter (Nov. 7, 2019)
Newsletter compiled by Jon Munshaw.
Welcome to this week’s Threat Source newsletter — the perfect place to get caught up on all things Talos from the past week.
The only news we’re going to cover this week is the biggest news we’ve had in a while. Tuesday, we announced that Cisco Incident Response was becoming part of the Talos family. We’ve been working together for years, but now we’ll be closer than ever, so Incident Response can benefit from Talos’ intelligence, while their boots-on-the-ground experience will only add to Talos’ portfolio.
Check out our announcement blog post for more information. The Talos Incident Response at-a-glance also provides an overview of the services IR provides. And the new IR page on TalosIntelligence.com gives
Talos
Threat Source newsletter (Nov. 7, 2019)
blogs_talos·2019-11-07
Threat Source newsletter (Nov. 7, 2019)
Newsletter compiled by Jon Munshaw.
Welcome to this week’s Threat Source newsletter — the perfect place to get caught up on all things Talos from the past week.
The only news we’re going to cover this week is the biggest news we’ve had in a while. Tuesday, we announced that Cisco Incident Response was becoming part of the Talos family. We’ve been working together for years, but now we’ll be closer than ever, so Incident Response can benefit from Talos’ intelligence, while their boots-on-the-ground experience will only add to Talos’ portfolio.
Check out our announcement blog post for more information. The Talos Incident Response at-a-glance also provides an overview of the services IR provides. And the new IR page on TalosIntelligence.com gives you an easy way to contact IR, should you n
Checkpoint
4th November – Threat Intelligence Bulletin
blogs_checkpoint·2019-11-04
CVE-2019-16662 4th November – Threat Intelligence Bulletin
Latest Publications
CPR Podcast Channel
AI Research
Web 3.0 Security
Intelligence Reports
ThreatCloud AI
Threat Intelligence & Research
Zero Day Protection
Sandblast File Analysis
About Us
SUBSCRIBE
2026
2025
2024
2023
2022
2021
2020
2019
2018
2017
2016
## 4th November – Threat Intelligence Bulletin
For the latest discoveries in cyber research for the week of 4th November 2019, please download our Threat Intelligence Bulletin .
Top attacks AND breaches
India’s nuclear power plant has been hit by a cyber-attack after malware designed for data extraction was identified in one of its systems. The malware, linked by experts to the North-Korean group Lazarus, infected a computer in the plant’s external network, rather than the operational one.
Check Point SandBlast p
Tenable
CVE-2019-13720: Use-After-Free Zero Day in Google Chrome Exploited in the Wild
blogs_tenable·2019-11-01·CVSS 8.8
[HIGH] CVE-2019-13720: Use-After-Free Zero Day in Google Chrome Exploited in the Wild
## Cloud Exposure
Tenable Cloud Security (CNAPP) Request a demo
Tenable Cloud Vulnerability Management Request a demo
Tenable CIEM Request a demo
Secure your cloud
## Vulnerability Exposure
Tenable Vulnerability Management Try for free
Tenable Security Center Request a demo
Tenable Web App Scanning Try for free
Tenable Patch Management Request a demo
Tenable Enclave Security Request a demo
Tenable Attack Surface Management Request a demo
Tenable Nessus Try for free
## AI Exposure
Tenable AI Exposure Request a demo
## OT/IoT Exposure
Tenable OT Security Request a demo
## Identity Exposure
Tenable Identity Exposure Request a demo
## Business needs
Active Directory
AI Security Posture Management (AI-SPM)
AWS security
Azure security
Cloud Security Posture Man
Securelist
Chrome 0-day exploit CVE-2019-13720 used in Operation WizardOpium
blogs_securelist·2019-11-01·CVSS 8.8
CVE-2019-13720 [HIGH] Chrome 0-day exploit CVE-2019-13720 used in Operation WizardOpium
Authors
- AMR
- GReAT
## Executive summary
Kaspersky Exploit Prevention is a component part of Kaspersky products that has successfully detected a number of zero-day attacks in the past. Recently, it caught a new unknown exploit for Google’s Chrome browser. We promptly reported this to the Google Chrome security team. After reviewing of the PoC we provided, Google confirmed there was a zero-day vulnerability and assigned it CVE-2019-13720. Google has released Chrome version 78.0.3904.87 for Windows, Mac, and Linux and we recommend all Chrome users to update to this latest version as soon as possible! You can read Google’s bulletin by clicking here.
Kaspersky endpoint products detect the exploit with the help of the exploit prevention component. The verdict for this attack is Exploit.Wi
Securelist
Chrome 0-day exploit CVE-2019-13720 used in Operation WizardOpium
blogs_securelist·2019-11-01·CVSS 8.8
CVE-2019-13720 [HIGH] Chrome 0-day exploit CVE-2019-13720 used in Operation WizardOpium
Authors
AMR
GReAT
## Executive summary
Kaspersky Exploit Prevention is a component part of Kaspersky products that has successfully detected a number of zero-day attacks in the past. Recently, it caught a new unknown exploit for Google’s Chrome browser. We promptly reported this to the Google Chrome security team. After reviewing of the PoC we provided, Google confirmed there was a zero-day vulnerability and assigned it CVE-2019-13720. Google has released Chrome version 78.0.3904.87 for Windows, Mac, and Linux and we recommend all Chrome users to update to this latest version as soon as possible! You can read Google’s bulletin by clicking here .
Kaspersky endpoint products detect the exploit with the help of the exploit prevention component. The verdict for this attack is Exploit.Win3
Bugzilla
CVE-2019-13720 chromium: chromium-browser: use-after-free in audio [fedora-all]
bugzilla·2019-11-04·CVSS 8.8
CVE-2019-13720 [HIGH] CVE-2019-13720 chromium: chromium-browser: use-after-free in audio [fedora-all]
CVE-2019-13720 chromium: chromium-browser: use-after-free in audio [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple supported versio
Bugzilla
CVE-2019-13720 chromium: chromium-browser: use-after-free in audio [epel-7]
bugzilla·2019-11-04·CVSS 8.8
CVE-2019-13720 [HIGH] CVE-2019-13720 chromium: chromium-browser: use-after-free in audio [epel-7]
CVE-2019-13720 chromium: chromium-browser: use-after-free in audio [epel-7]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of epel-7.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
Discussion:
Use the following template to for the 'fedpkg
Bugzilla
CVE-2019-13720 chromium-browser: use-after-free in audio
bugzilla·2019-11-04·CVSS 8.8
CVE-2019-13720 [HIGH] CVE-2019-13720 chromium-browser: use-after-free in audio
CVE-2019-13720 chromium-browser: use-after-free in audio
An use after free flaw was found in the audio component of the Chromium browser.
References:
https://chromereleases.googleblog.com/2019/10/stable-channel-update-for-desktop_31.html
https://crbug.com/1019226
Discussion:
Created chromium tracking bugs for this issue:
Affects: epel-7 [bug 1768588]
Affects: fedora-all [bug 1768587]
---
This issue has been addressed in the following products:
Red Hat Enterprise Linux 6 Supplementary
Via RHSA-2019:3775 https://access.redhat.com/errata/RHSA-2019:3775
---
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s):
https://access.redhat.com/security/cve/cve-2019-13720
http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00022.htmlhttp://packetstormsecurity.com/files/167066/Google-Chrome-78.0.3904.70-Remote-Code-Execution.htmlhttps://chromereleases.googleblog.com/2019/10/stable-channel-update-for-desktop_31.htmlhttps://crbug.com/1019226https://security.gentoo.org/glsa/202004-04http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00022.htmlhttp://packetstormsecurity.com/files/167066/Google-Chrome-78.0.3904.70-Remote-Code-Execution.htmlhttps://chromereleases.googleblog.com/2019/10/stable-channel-update-for-desktop_31.htmlhttps://crbug.com/1019226https://security.gentoo.org/glsa/202004-04https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-13720
2019-11-25
Published
2022-05-23
Added to CISA KEV
Exploited in the wild