CVE-2020-6392 vulnerability in Google and Other Products
Published on February 11, 2020

Insufficient policy enforcement in extensions in Google Chrome prior to 80.0.3987.87 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted Chrome Extension.

Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory NVD

Products Associated with CVE-2020-6392

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2020-6392 are published in these products:

Google Chrome

OpenSuse Backports Sle

Fedora Project Fedora

Debian Linux

Red Hat Enterprise Linux Desktop

Red Hat Enterprise Linux Server

Red Hat Enterprise Linux Workstation

Affected Versions

Google Chrome:

Version unspecified and below 80.0.3987.87 is affected.

Exploit Probability

EPSS

1.29%

Percentile

79.34%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2020-6392 vulnerability in Google and Other ProductsPublished on February 11, 2020

Products Associated with CVE-2020-6392

Affected Versions

Exploit Probability

CVE-2020-6392 vulnerability in Google and Other Products
Published on February 11, 2020