CVE-2020-6514 | SynScan

Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2020-6514

Inappropriate implementation in WebRTC in Google Chrome prior to 84.0.4147.89 allowed an attacker in a privileged network position to potentially exploit heap corruption via a crafted SCTP stream.

Published: Jul 22, 2020
Updated: Apr 14, 2023
CVE: CVE-2020-6514
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 6.5
AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

CVSS v2:

Severity: Low
Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N

CWEs:

CWE-200

Affected Software
References

Software	From	Fixed in
google / chrome	-	84.0.4147.89
opensuse / leap	15.1	15.1.x
opensuse / backports_sle	15.0-sp1	15.0-sp1.x
opensuse / leap	15.2	15.2.x
opensuse / backports_sle	15.0-sp2	15.0-sp2.x
fedoraproject / fedora	31	31.x
fedoraproject / fedora	32	32.x
debian / debian_linux	9.0	9.0.x
debian / debian_linux	10.0	10.0.x
canonical / ubuntu_linux	16.04	16.04.x
canonical / ubuntu_linux	18.04	18.04.x
canonical / ubuntu_linux	20.04	20.04.x
apple / tvos	-	13.4.8
apple / iphone_os	-	13.6
apple / safari	-	13.1.2
apple / watchos	-	6.2.8
apple / ipados	-	13.6