Vulnerability Database

300,445

Total vulnerabilities in the database

CVE-2020-15999

Heap buffer overflow in Freetype in Google Chrome prior to 86.0.4240.111 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

CVSS v3:

  • Severity: Critical
  • Score: 9.6
  • AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

CVSS v2:

  • Severity: Low
  • Score: 4.3
  • AV:N/AC:M/Au:N/C:N/I:N/A:P

CWEs:

Software From Fixed in
google / chrome - 86.0.4240.111
freetype / freetype 2.6.0 2.10.4
debian / debian_linux 10.0 10.0.x
fedoraproject / fedora 31 31.x
opensuse / backports_sle 15.0-sp2 15.0-sp2.x
.NET NuGet icon CefSharp.Common - 85.3.130
.NET NuGet icon CefSharp.Wpf - 85.3.130
.NET NuGet icon CefSharp.WinForms - 85.3.130
.NET NuGet icon CefSharp.Wpf.HwndHost - 85.3.130