Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

GHSA-gvqv-779r-4jgp

GitHub Security Advisory

Use after free in CefSharp

✓ GitHub Reviewed HIGH Has CVE
View on GitHub

Advisory Details

CVE-2020-16017: Use after free in site isolation

- https://chromereleases.googleblog.com/2020/11/stable-channel-update-for-desktop_11.html
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16017

Google is aware of reports that exploits for CVE-2020-16013 and CVE-2020-16017 exist in the wild.

There is currently little to no public information on the issue other than it has been flagged as `High` severity.

Affected Packages

NuGet CefSharp.Common
Affected versions: 0 (fixed in 86.0.241)
NuGet CefSharp.Wpf
Affected versions: 0 (fixed in 86.0.241)
NuGet CefSharp.WinForms
Affected versions: 0 (fixed in 86.0.241)
NuGet CefSharp.Wpf.HwndHost
Affected versions: 0 (fixed in 86.0.241)

Related CVEs

CVE-2020-16017

Key Information

GHSA ID
GHSA-gvqv-779r-4jgp
Published
November 27, 2020 8:13 PM
Last Modified
November 27, 2020 8:06 PM
CVSS Score
7.5 /10
Primary Ecosystem
NuGet
Primary Package
CefSharp.Common
GitHub Reviewed
✓ Yes

Dataset

Last updated: June 13, 2025 6:24 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.