Use after free in Mojo in Google Chrome prior to 86.0.4240.99 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.
References
Link | Resource |
---|---|
https://chromereleases.googleblog.com/2020/10/chrome-for-android-update_31.html | Release Notes Vendor Advisory |
https://crbug.com/1133668 | Permissions Required Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2020-11-02 19:15
Updated : 2020-11-04 06:30
NVD link : CVE-2020-15997
Mitre link : CVE-2020-15997
JSON object : View
CWE
CWE-416
Use After Free
Products Affected
- android
- chrome