CVE-2020-16033

Medium

Inappropriate implementation in WebUSB in Google Chrome prior to 87.0.4280.66 allowed a remote attacker to spoof security UI via a crafted…

Chrome·CWE-1021·Published 2021-01-08

CVSS

4.3

EPSS

0.01

KEV

Exploits

cve.orgen

149 chars

Inappropriate implementation in WebUSB in Google Chrome prior to 87.0.4280.66 allowed a remote attacker to spoof security UI via a crafted HTML page.

NVDen

149 chars

Inappropriate implementation in WebUSB in Google Chrome prior to 87.0.4280.66 allowed a remote attacker to spoof security UI via a crafted HTML page.

NVDes

193 chars

Una implementación inapropiada en WebUSB en Google Chrome versiones anteriores a 87.0.4280.66, permitió a un atacante remoto falsificar una IU de seguridad por medio de una página HTML diseñada

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	4.3	8.6	2.9	AV:N/AC:M/Au:N/C:N/I:P/A:N
3.1	Primary	NVD	4.3	2.8	1.4	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N