CVE-2020-6522

Medium

6.8/10

Summary

Inappropriate implementation in external protocol handlers in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page.

Access Complexity: MEDIUM
AccessVector: NETWORK
Authentication: NONE
Integrity Impact: PARTIAL
Confidentiality Impact: PARTIAL
Availability Impact: PARTIAL

References

Advisory Timeline

Published Jul 22, 2020

CVE-2020-6522

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS