Rewterz Threat Advisory – F5 BIG-IP information disclosure
November 2, 2020Rewterz Threat Advisory – Oracle WebLogic Server Vulnerability
November 3, 2020Rewterz Threat Advisory – F5 BIG-IP information disclosure
November 2, 2020Rewterz Threat Advisory – Oracle WebLogic Server Vulnerability
November 3, 2020Severity
High
Analysis Summary
CVE-2020-16009
Inappropriate implementation in V8 in Google Chrome prior to 86.0.4240.183 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2020-16010
Heap buffer overflow in UI in Google Chrome on Android prior to 86.0.4240.185 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.
Impact
Remote code execution
Affected Vendors
Affected Products
Google Chrome prior to 86.0.4240.183
Remediation
Update to the latest version of Google Chrome.