CVE-2020-15973 vulnerability in Google and Other Products
Published on November 3, 2020

Insufficient policy enforcement in extensions in Google Chrome prior to 86.0.4240.75 allowed an attacker who convinced a user to install a malicious extension to bypass same origin policy via a crafted Chrome Extension.

Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory NVD

Products Associated with CVE-2020-15973

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2020-15973 are published in these products:

Google Chrome

OpenSuse Backports Sle

Debian Linux

Fedora Project Fedora

Affected Versions

Google Chrome:

Version unspecified and below 86.0.4240.75 is affected.

Exploit Probability

EPSS

0.82%

Percentile

74.11%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2020-15973 vulnerability in Google and Other ProductsPublished on November 3, 2020

Products Associated with CVE-2020-15973

Affected Versions

Exploit Probability

CVE-2020-15973 vulnerability in Google and Other Products
Published on November 3, 2020