CVE-2020-15959 | Vulnerability Database | Aqua Security

Insufficient policy enforcement in networking in Google Chrome prior to 85.0.4183.102 allowed an attacker who convinced the user to enable logging to obtain potentially sensitive information from process memory via social engineering.

Affected Software

Name	Vendor	Start Version	End Version
Chrome	Google	*	85.0.4183.102 (excluding)
Red Hat Enterprise Linux 6 Supplementary	RedHat	chromium-browser-0:85.0.4183.102-1.el6_10	*
Chromium-browser	Ubuntu	bionic	*
Chromium-browser	Ubuntu	trusty	*
Chromium-browser	Ubuntu	upstream	*
Chromium-browser	Ubuntu	xenial	*

References

http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00072.html
http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00078.html
http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00081.html
http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00049.html
https://chromereleases.googleblog.com/2020/09/stable-channel-update-for-desktop.html
https://crbug.com/1122684
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FN7HZIGAOCZKBT4LV363BCPRA5FLY25I/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GNIYFJST4TFJYFZ27VODBOINCLBGULTD/
https://security.gentoo.org/glsa/202101-30
https://www.debian.org/security/2021/dsa-4824

NVD	https://nvd.nist.gov/vuln/detail/CVE-2020-15959
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html