CVE-2020-6422 – This is a use-after-free vulnerability in Chrom... (How to Fix)

Q: What is the severity of CVE-2020-6422?

CVE-2020-6422 has a CVSS score of 8.8 (HIGH). This is a use-after-free vulnerability in Chrome's WebGL implementation that allows remote attackers to potentially exploit heap corruption. Attackers can trigger this by tricking users into visiting a malicious HTML page. All Chrome users prior to version 80.0.3987.149 are affected.

📋 TL;DR

This is a use-after-free vulnerability in Chrome's WebGL implementation that allows remote attackers to potentially exploit heap corruption. Attackers can trigger this by tricking users into visiting a malicious HTML page. All Chrome users prior to version 80.0.3987.149 are affected.

💻 Affected Systems

Products:

Google Chrome

Versions: All versions prior to 80.0.3987.149

Operating Systems: Windows, macOS, Linux, Chrome OS

Default Config Vulnerable: ⚠️ Yes

Notes: Only affects Chrome with WebGL enabled (default). Other Chromium-based browsers may also be affected if they haven't backported the fix.

📦 What is this software?

Backports Sle by Opensuse

View all CVEs affecting Backports Sle →

Chrome by Google

Google Chrome is the world's most popular web browser, used by over 3 billion users globally across Windows, macOS, Linux, Android, and iOS platforms. As a Chromium-based browser developed by Google, Chrome dominates the browser market with approximately 65% market share, making it a critical compon...

Learn more about Chrome →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution leading to complete system compromise, data theft, or ransomware deployment.

🟠

Likely Case

Browser crash (denial of service) or limited code execution within the browser sandbox.

🟢

If Mitigated

No impact if Chrome is fully patched or if WebGL is disabled.

🌐 Internet-Facing: HIGH - Attackers can host malicious pages on the internet and target any vulnerable Chrome user.

🏢 Internal Only: MEDIUM - Internal users could be targeted via phishing or compromised internal websites.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: MEDIUM

Exploitation requires user interaction (visiting a malicious page) but no authentication. Use-after-free vulnerabilities in browsers often lead to reliable exploits.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 80.0.3987.149

Vendor Advisory: https://chromereleases.googleblog.com/2020/03/stable-channel-update-for-desktop_18.html

Restart Required: Yes

Instructions:

1. Open Chrome. 2. Click the three-dot menu → Help → About Google Chrome. 3. Chrome will automatically check for and install updates. 4. Click 'Relaunch' to restart Chrome with the patched version.

🔧 Temporary Workarounds

Disable WebGL

all

Prevents exploitation by disabling the vulnerable component entirely.

Navigate to chrome://flags/#disable-webgl and set to 'Disabled'

🧯 If You Can't Patch

Use alternative browsers without WebGL support until Chrome can be updated.
Implement strict web filtering to block access to untrusted websites.

🔍 How to Verify

Check if Vulnerable:

Check Chrome version: if below 80.0.3987.149, you are vulnerable.

Check Version:

On Windows/macOS/Linux: Open Chrome → Click three-dot menu → Help → About Google Chrome

Verify Fix Applied:

Confirm Chrome version is 80.0.3987.149 or higher.

📡 Detection & Monitoring

Log Indicators:

Chrome crash logs with WebGL-related errors
Unexpected Chrome process termination

Network Indicators:

HTTP requests to suspicious domains hosting HTML with WebGL content

SIEM Query:

source="chrome_logs" AND (event="crash" OR event="process_termination") AND message="*WebGL*"

📊 Metadata

CVE ID: CVE-2020-6422

CVSS v3 Score: 8.8 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE: CWE-787

Published: March 23, 2020

Last Updated: November 21, 2024

🔗 References

http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00028.html Mailing List,Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00037.html Mailing List,Third Party Advisory
https://chromereleases.googleblog.com/2020/03/stable-channel-update-for-desktop_18.html Third Party Advisory,Vendor Advisory
https://crbug.com/1051748 Exploit,Issue Tracking,Patch,Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2DDNOAGIX5D77TTHT6YPMVJ5WTXTCQEI/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6IOHSO6BUKC6I66J5PZOMAGFVJ66ZS57/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JWANFIR3PYAL5RJQ4AO3ZS2DYMSF2ZGZ/
https://security.gentoo.org/glsa/202003-53 Third Party Advisory
https://www.debian.org/security/2020/dsa-4645 Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00028.html Mailing List,Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00037.html Mailing List,Third Party Advisory
https://chromereleases.googleblog.com/2020/03/stable-channel-update-for-desktop_18.html Third Party Advisory,Vendor Advisory
https://crbug.com/1051748 Exploit,Issue Tracking,Patch,Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2DDNOAGIX5D77TTHT6YPMVJ5WTXTCQEI/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6IOHSO6BUKC6I66J5PZOMAGFVJ66ZS57/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JWANFIR3PYAL5RJQ4AO3ZS2DYMSF2ZGZ/
https://security.gentoo.org/glsa/202003-53 Third Party Advisory
https://www.debian.org/security/2020/dsa-4645 Third Party Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2020-6422, you might also want to check these:

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Backports Sle by Opensuse

Chrome by Google

Debian Linux by Debian

Debian Linux by Debian

Fedora by Fedoraproject

Fedora by Fedoraproject

Fedora by Fedoraproject

Suse Linux Enterprise Desktop by Suse

Suse Linux Enterprise Server by Suse

⚠️ Risk & Real-World Impact

Worst Case

Likely Case

If Mitigated

🎯 Exploit Status

🛠️ Fix & Mitigation

✅ Official Fix

Instructions:

🔧 Temporary Workarounds

Disable WebGL

🧯 If You Can't Patch

🔍 How to Verify

Check if Vulnerable:

Check Version:

Verify Fix Applied:

📡 Detection & Monitoring

Log Indicators:

Network Indicators:

SIEM Query:

📊 Metadata

🔗 References

📤 Share & Export

🔗 Related Vulnerabilities