Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Share Post: Reddit Facebook
Billions of Users Affected with Google Chrome Zero-Day
#1
https://cybersecuritynews.com/google-chr...-zero-day/      Billions of Users Affected with Google Chrome Zero-Day That Allow Attackers To Fully Bypass CSP Rules
By Balaji N - August 12, 2020        Recently, the security expert at PerimeterX, Gal Weizman has detected a Zero-day flaw in Google Chrome Browser that lets the attackers entirely bypass CSP rules, and this vulnerability was assigned as CVE-2020-6519.

Weizman said that “it was quite surprised him, when he identified that Zero-day vulnerability has been affecting the Chromium-based browsers like Chrome, Opera, Edge – on Windows, Mac, and Android. And more importantly, they are allowing the attackers to completely bypass the CSP rules on Chrome versions 73 (March 2019) through 83 (July 2020).”

CSP is the initial approach that are utilized by the website owners to implement data security policies and to stop ill-disposed Shadow Code executions on their website.    Moreover, this issue is quite severe, as Chrome is the most popularly used web browser currently, and it has nearly two billion users and dominating the web browser business with more than 65% part.
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  It was a bad week for millions of people who rely on Google for apps and Chrome exten mrtrout 0 683 06-03-2023 , 04:09 AM
Last Post: mrtrout
  Google Chrome emergency update fixes first zero-day of 2023 mrtrout 0 484 04-15-2023 , 07:53 PM
Last Post: mrtrout
  Google Chrome emergency update fixes 9th zero-day of the year tarekma7 0 601 12-05-2022 , 04:19 PM
Last Post: tarekma7
  Anonymous urges Internet users to spam Google Maps, Bjyda 0 1,490 03-01-2022 , 09:13 PM
Last Post: Bjyda
  Why You Suddenly Need To Delete Google Chrome mrtrout 0 611 09-02-2021 , 08:59 AM
Last Post: mrtrout

Forum Jump:


Users browsing this thread: 1 Guest(s)