CVE-2020-6514 — Sensitive Information Exposure in Google Chrome
Severity
6.5MEDIUMNVD
EPSS
14.5%
top 5.55%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedJul 22
Latest updateMay 24
Description
Inappropriate implementation in WebRTC in Google Chrome prior to 84.0.4147.89 allowed an attacker in a privileged network position to potentially exploit heap corruption via a crafted SCTP stream.
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:NExploitability: 2.8 | Impact: 3.6
Affected Packages12 packages
Also affects: Debian Linux 10.0, 9.0, Fedora 31, 32, Ubuntu Linux 16.04, 18.04, 20.04
🔴Vulnerability Details
6GHSA
▶
CVEList
▶
📋Vendor Advisories
13💬Community
5Bugzilla▶
CVE-2020-6514 chromium: chromium-browser: Inappropriate implementation in WebRTC [fedora-all]↗2020-07-15
Bugzilla▶
CVE-2020-6514 chromium: chromium-browser: Inappropriate implementation in WebRTC [epel-all]↗2020-07-15
Bugzilla▶
CVE-2020-6510 CVE-2020-6511 CVE-2020-6512 CVE-2020-6513 CVE-2020-6514 CVE-2020-6515 CVE-2020-6516 CVE-2020-6517 CVE-2020-6518 CVE-2020-6519 CVE-2020-6520 CVE-2020-6521 CVE-2020-6522 CVE-2020-6523 CVE-↗2020-07-15
Bugzilla▶
CVE-2020-6510 CVE-2020-6511 CVE-2020-6512 CVE-2020-6513 CVE-2020-6514 CVE-2020-6515 CVE-2020-6516 CVE-2020-6517 CVE-2020-6518 CVE-2020-6519 CVE-2020-6520 CVE-2020-6521 CVE-2020-6522 CVE-2020-6523 CVE-↗2020-07-15