Multiple Vulnerabilities in Google Chrome

  • CERT Admin
  • Tue Dec 08 2020
  • Alerts

Systems Affected 

Google Chrome versions prior to 87.0.4280.88 

Threat Level 

Medium 

Overview 

Multiple vulnerabilities have been identified in the Google Chrome desktop version which could allow an attacker to execute arbitrary codes, bypass security restrictions, or disclose sensitive information. 

Description 

Vulnerabilities existed in Google Chrome due to use after free error in clipboard, media, and extensions, insufficient data validation on version 08, out of bounds read error in networking, or unutilized use error in version 08. An attacker could exploit these vulnerabilities by persuading a user to visit a maliciously crafted website. 

Impact 

  ✻  Exposing sensitive information to unauthorized parties
  ✻  Unauthorized access
  ✻  Malware infections 

Solution/ Workarounds 

  ✻  Upgrade to the Google Chrome version 87.0.4280.88 

References 

  ✻  https://chromereleases.googleblog.com/2020/12/stable-channel-update-for-desktop.html 

Disclaimer 

The information provided herein is on "as is" basis, without warranty of any kind. 

Last updated: Tue Dec 08 2020