VDB
DEBIAN-CVE-2020-15999
DEBIAN-CVE-2020-15999
PUBLISHED
CVSS 9.600000381469727 CRITICAL
Heap buffer overflow in Freetype in Google Chrome prior to 86.0.4240.111 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Risk Scores
CVSS 3.1
9.600000381469727
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:12 | freetype | 0, 0, 0 |
| Debian:13 | freetype | 0, 0, 0 |
| Debian:14 | freetype | 0, 0, 0 |
| Debian:11 | freetype | 0, 0, 0 |
Exploit Intelligence
- Todos los materiales necesarios para la PoC en Chrome y ftview (github-poc)
- Repositorio con un script encargado de explotar la vulnerabilidad CVE-2020-15999 (github-poc)
- CVE-2020-15999 (github-poc)
- kev.json (github-poc)
- data.js (github-poc)
Timeline
- Nov 3, 2020 CVE Published
- Apr 28, 2026 CVE Updated