Severity Rating: HIGH
Software Affected
•Google Chrome versions prior to 83.0.4103.61
Overview
Multiple vulnerabilities have been reported in Google Chrome which could be
exploited by a remote attacker to execute arbitrary code on the targeted
system.
Description
These vulnerabilities exist in Google Chrome due to Use after free in
reader mode, media, WebRTC, Blink, Type Confusion in V8, Insufficient
policy enforcement in developer tools, Blink, tab strip, enterprise, URL
formatting, developer tools, payments, navigations, downloads, Insufficient
validation of untrusted input in clipboard, Incorrect security UI in full
screen, Inappropriate implementation in full screen, sharing, developer
tools, Insufficient data validation in ChromeDriver, media router, loader
and Incorrect security UI in site information. A remote attacker could
exploit these vulnerabilities by enticing the user to execute the specially
crafted web page.
Successful exploitation of these vulnerabilities could allow the attacker
execute arbitrary code on the target system.
Solution
Upgrade to Google chrome version 83.0.4103.61 as mentioned in:
ktop_19.html
Vendor Information
Google Chrome
ktop_19.html
References
Google Chrome
ktop_19.html
CVE Name
CVE-2020-6465
CVE-2020-6466
CVE-2020-6467
CVE-2020-6468
CVE-2020-6469
CVE-2020-6470
CVE-2020-6471
CVE-2020-6472
CVE-2020-6473
CVE-2020-6474
CVE-2020-6475
CVE-2020-6476
CVE-2020-6477
CVE-2020-6478
CVE-2020-6479
CVE-2020-6480
CVE-2020-6481
CVE-2020-6482
CVE-2020-6483
CVE-2020-6484
CVE-2020-6485
CVE-2020-6486
CVE-2020-6487
CVE-2020-6488
CVE-2020-6489
CVE-2020-6490
CVE-2020-6491
About Cert Advisory
We have created this blog to provide latest security advisory from the india cert for the security vulnerability, threats, attacks and patching required to mitigate any kind of cyber attacks.
![Fwd: [CIAD-2020-0032] DNS Protocol Vulnerability(NXNSAttack)](http://3.bp.blogspot.com/-ZRo8fwgs65M/UZC2jMJpcLI/AAAAAAAAC5Y/EfoFQsr1wzU/s1600/BS+No+Image.gif )