CVE-2020-15999 - Vulnerability Details

Heap buffer overflow in Freetype in Google Chrome prior to 86.0.4240.111 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction Required

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

This CVE is in the KEV database since Nov. 3, 2021.

Exploitation active

Automatable no

Technical Impact partial

Vendors	Products
Debian	Debian Linux
Fedoraproject	Fedora
Freetype	Freetype
Google	Chrome
Netapp	Ontap Select Deploy Administration Utility
Opensuse	Backports Sle
Redhat	Enterprise Linux Rhel E4s Rhel Eus Rhel Extras

Configuration 1 [-]

cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*

Configuration 2 [-]

cpe:2.3:a:freetype:freetype:*:*:*:*:*:*:*:*

Configuration 3 [-]

cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*

Configuration 4 [-]

cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*

Configuration 5 [-]

cpe:2.3:a:opensuse:backports_sle:15.0:sp2:*:*:*:*:*:*

Configuration 6 [-]

cpe:2.3:a:netapp:ontap_select_deploy_administration_utility:-:*:*:*:*:*:*:*

Package	CPE	Advisory	Released Date
Red Hat Enterprise Linux 6 Supplementary
chromium-browser-0:86.0.4240.111-1.el6_10	cpe:/a:redhat:rhel_extras:6	RHSA-2020:4351	2020-10-26T00:00:00Z
Red Hat Enterprise Linux 7
freetype-0:2.8-14.el7_9.1	cpe:/o:redhat:enterprise_linux:7	RHSA-2020:4907	2020-11-04T00:00:00Z
Red Hat Enterprise Linux 8
freetype-0:2.9.1-4.el8_3.1	cpe:/o:redhat:enterprise_linux:8	RHSA-2020:4952	2020-11-05T00:00:00Z
Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions
freetype-0:2.9.1-4.el8_0.1	cpe:/o:redhat:rhel_e4s:8.0	RHSA-2020:4949	2020-11-05T00:00:00Z
Red Hat Enterprise Linux 8.1 Extended Update Support
freetype-0:2.9.1-4.el8_1.1	cpe:/o:redhat:rhel_eus:8.1	RHSA-2020:4950	2020-11-05T00:00:00Z
Red Hat Enterprise Linux 8.2 Extended Update Support
freetype-0:2.9.1-4.el8_2.1	cpe:/o:redhat:rhel_eus:8.2	RHSA-2020:4951	2020-11-05T00:00:00Z

References

Link	Providers
http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00016.html
http://seclists.org/fulldisclosure/2020/Nov/33
https://chromereleases.googleblog.com/2020/10/stable-channel-update-for-desktop_20.html
https://crbug.com/1139963
https://googleprojectzero.blogspot.com/p/rca-cve-2020-15999.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/J3QVIGAAJ4D62YEJAJJWMCCBCOQ6TVL7/
https://nvd.nist.gov/vuln/detail/CVE-2020-15999
https://security.gentoo.org/glsa/202011-12
https://security.gentoo.org/glsa/202012-04
https://security.gentoo.org/glsa/202401-19
https://security.netapp.com/advisory/ntap-20240812-0001/
https://www.cisa.gov/known-exploited-vulnerabilities-catalog
https://www.cve.org/CVERecord?id=CVE-2020-15999
https://www.debian.org/security/2021/dsa-4824

History

Wed, 05 Feb 2025 15:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Netapp Netapp ontap Select Deploy Administration Utility
CPEs		cpe:2.3:a:netapp:ontap_select_deploy_administration_utility:-:::::::*
Vendors & Products		Netapp Netapp ontap Select Deploy Administration Utility

Tue, 04 Feb 2025 15:15:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-120
Metrics	cvssV3_1 `{'score': 6.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H'}` ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`	cvssV3_1 `{'score': 9.6, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H'}` ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'active', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Mon, 03 Feb 2025 14:15:00 +0000

Type	Values Removed	Values Added
Metrics		kev `{'dateAdded': '2021-11-03'}` ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Fri, 22 Nov 2024 12:00:00 +0000

Type	Values Removed	Values Added
References		https://security.netapp.com/advisory/ntap-20240812-0001/

Wed, 14 Aug 2024 00:45:00 +0000

Type	Values Removed	Values Added
References		https://www.cisa.gov/known-exploited-vulnerabilities-catalog

MITRE

Status: PUBLISHED

Assigner: Chrome

Published: 2020-11-03T00:00:00.000Z

Updated: 2025-02-04T15:00:34.972Z

Reserved: 2020-07-27T00:00:00.000Z

Link: CVE-2020-15999

Vulnrichment

Updated: 2024-08-12T22:02:48.152Z

NVD

Status : Analyzed

Published: 2020-11-03T03:15:14.853

Modified: 2025-02-05T14:37:57.520

Link: CVE-2020-15999

Redhat

Severity : Important

Publid Date: 2020-10-19T00:00:00Z

Links: CVE-2020-15999 - Bugzilla

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction Required

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

Exploitation active

Automatable no

Technical Impact partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object