Login Sign Up

CVE-2020-16044

8.8 HIGH

📋 TL;DR

This vulnerability allows remote attackers to potentially execute arbitrary code or cause denial of service via heap corruption in Chrome's WebRTC implementation. It affects all users running vulnerable versions of Google Chrome when processing malicious SCTP packets, typically during WebRTC sessions.

💻 Affected Systems

Products:
  • Google Chrome
  • Chromium-based browsers
Versions: All versions prior to 88.0.4324.96
Operating Systems: Windows, macOS, Linux, Android, Chrome OS
Default Config Vulnerable: ⚠️ Yes
Notes: Requires WebRTC to be enabled (default) and processing of SCTP packets.

📦 What is this software?

Chrome by Google

Google Chrome is the world's most popular web browser, used by over 3 billion users globally across Windows, macOS, Linux, Android, and iOS platforms. As a Chromium-based browser developed by Google, Chrome dominates the browser market with approximately 65% market share, making it a critical compon...

Learn more about Chrome →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution leading to full system compromise, data theft, or persistent malware installation.

🟠

Likely Case

Browser crash (denial of service) or limited memory corruption leading to information disclosure.

🟢

If Mitigated

No impact if Chrome is fully patched or WebRTC/SCTP functionality is disabled.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ⚠️ Yes
Complexity: HIGH

Exploitation requires crafting malicious SCTP packets and triggering the use-after-free condition during WebRTC sessions.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 88.0.4324.96 and later

Vendor Advisory: https://chromereleases.googleblog.com/2021/01/stable-channel-update-for-desktop_19.html

Restart Required: Yes

Instructions:

1. Open Chrome. 2. Click menu (three dots) → Help → About Google Chrome. 3. Chrome will automatically check for and apply updates. 4. Restart Chrome when prompted.

🔧 Temporary Workarounds

Disable WebRTC

all

Prevents exploitation by disabling WebRTC functionality entirely.

chrome://flags/#disable-webrtc
Set to 'Disabled'

Disable SCTP in WebRTC

all

Disables SCTP transport protocol in WebRTC.

chrome://flags/#disable-sctp-data-channels
Set to 'Disabled'

🧯 If You Can't Patch

  • Use browser isolation technology to contain potential exploitation
  • Implement network filtering to block or inspect WebRTC/SCTP traffic

🔍 How to Verify

Check if Vulnerable:

Check Chrome version: if below 88.0.4324.96, you are vulnerable.

Check Version:

chrome://version/

Verify Fix Applied:

Confirm Chrome version is 88.0.4324.96 or higher.

📡 Detection & Monitoring

Log Indicators:

  • Chrome crash reports
  • WebRTC error logs
  • SCTP protocol errors

Network Indicators:

  • Unusual SCTP packet patterns
  • WebRTC session anomalies

SIEM Query:

source="chrome" AND (event="crash" OR error="webrtc" OR error="sctp")

📊 Metadata

CVE ID: CVE-2020-16044
CVSS v3 Score: 8.8 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CWE: CWE-416
Published: February 9, 2021
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2020-16044, you might also want to check these:

CVE-2025-24085 10.0

This CVE describes a use-after-free vulnerability (CWE-416) in Apple operating systems that allows m...

Same vulnerability type (CWE-416)
CVE-2024-43102 10.0

This CVE describes a use-after-free vulnerability in FreeBSD's umtx (user mutex) subsystem where con...

Same vulnerability type (CWE-416)
CVE-2021-33796 10.0

CVE-2021-33796 is a use-after-free vulnerability in MuJS's regexp source property access that can le...

Same vulnerability type (CWE-416)