What is the severity of CVE-2020-15995?

The severity of CVE-2020-15995 is classified as high due to the potential for remote code execution through heap corruption.

How do I fix CVE-2020-15995?

To fix CVE-2020-15995, update Google Chrome to version 86.0.4240.99 or later or ensure you are using an updated version of Chromium on Debian and Fedora.

Which versions of Google Chrome are affected by CVE-2020-15995?

CVE-2020-15995 affects Google Chrome versions prior to 86.0.4240.99.

Is Google Android vulnerable to CVE-2020-15995?

No, Google Android is not vulnerable to CVE-2020-15995 as per security assessments.

What kind of exploitation can occur with CVE-2020-15995?

CVE-2020-15995 can be exploited by remote attackers through crafted HTML pages leading to potential heap corruption.

Vulnerability/
CVE-2020-15995

high

8.8

CWE

787

24/9/2020

3/11/2020

4/8/2024

CVE-2020-15995: Out of bounds write in V8

First published: Thu Sep 24 2020(Updated: )

Out of bounds write in V8 in Google Chrome prior to 86.0.4240.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

Credit: chrome-cve-admin@google.com Anonymous

Affected Software	Affected Version	How to fix
debian/chromium		90.0.4430.212-1~deb10u1 116.0.5845.180-1~deb11u1 118.0.5993.70-1~deb11u1 116.0.5845.180-1~deb12u1 118.0.5993.70-1~deb12u1 118.0.5993.70-1
debian/chromium	<=87.0.4280.88-0.4~deb10u1<=87.0.4280.88-0.4	87.0.4280.141-0.1 87.0.4280.141-0.1~deb10u1
All of
Google Chrome	<86.0.4240.99	86.0.4240.99
Android	*
Google Chrome	<86.0.4240.99
Android
Debian	=10.0
Fedora	=32
Fedora	=33

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

(Appears in the following advisories)

2509954079155194578

Peer vulnerabilities

(Found alongside the following vulnerabilities)

Frequently Asked Questions

What is the severity of CVE-2020-15995?
The severity of CVE-2020-15995 is classified as high due to the potential for remote code execution through heap corruption.
How do I fix CVE-2020-15995?
To fix CVE-2020-15995, update Google Chrome to version 86.0.4240.99 or later or ensure you are using an updated version of Chromium on Debian and Fedora.
Which versions of Google Chrome are affected by CVE-2020-15995?
CVE-2020-15995 affects Google Chrome versions prior to 86.0.4240.99.
Is Google Android vulnerable to CVE-2020-15995?
No, Google Android is not vulnerable to CVE-2020-15995 as per security assessments.
What kind of exploitation can occur with CVE-2020-15995?
CVE-2020-15995 can be exploited by remote attackers through crafted HTML pages leading to potential heap corruption.

collector/security-tracker-debian
collector/debian-bugs
alias/CVE-2020-15995
agent/type
agent/weakness
agent/severity
agent/title
agent/description
collector/mitre-cve
source/MITRE
agent/references
agent/last-modified-date
agent/author
agent/first-publish-date
agent/event
agent/trending
agent/source
collector/chrome-releases
agent/software-canonical-lookup
agent/software-canonical-lookup-request
agent/softwarecombine
agent/tags
collector/nvd-index
package-manager/debian
vendor/google
canonical/google chrome
canonical/android
vendor/debian
canonical/debian
version/debian/10.0
vendor/fedoraproject
canonical/fedora
version/fedora/32
version/fedora/33