Vulnerability Details : CVE-2020-16013
Inappropriate implementation in V8 in Google Chrome prior to 86.0.4240.198 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Vulnerability category: Memory Corruption
CVE-2020-16013 is in the CISA Known Exploited Vulnerabilities Catalog
CISA vulnerability name:Google Chromium V8 Incorrect Implementation Vulnerabililty
CISA required action:Apply updates per vendor instructions.
CISA description:Google Chromium V8 Engine contains an incorrect implementation vulnerability which allows a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Added on 2021-11-03 Action due date 2022-05-03
Exploit prediction scoring system (EPSS) score for CVE-2020-16013
Probability of exploitation activity in the next 30 days: 0.52%
CVSS scores for CVE-2020-16013
|Base Score||Base Severity||CVSS Vector||Exploitability Score||Impact Score||Source|
CWE ids for CVE-2020-16013
The product writes data past the end, or before the beginning, of the intended buffer.Assigned by: [email protected] (Primary)
References for CVE-2020-16013
Permissions Required;Vendor Advisory
Release Notes;Vendor Advisory