Description
Insufficient policy enforcement in JavaScript in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
Analysis
No analysis available yet.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| Chrome | affected |
|
Configuration 1 [-]
|
Configuration 2 [-]
|
| Package | CPE | Advisory | Released Date |
|---|---|---|---|
| Red Hat Enterprise Linux 6 Supplementary | |||
| chromium-browser-0:78.0.3904.70-1.el6_10 | cpe:/a:redhat:rhel_extras:6 | RHSA-2019:3759 | 2019-11-06T00:00:00Z |
No data available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
 Debian DSA |
DSA-4562-1 | chromium security update |
 EUVD |
EUVD-2019-5132 | Insufficient policy enforcement in JavaScript in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to leak cross-origin data via a crafted HTML page. |
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: Chrome
Published:
Updated: 2024-08-05T00:05:43.710Z
Reserved: 2019-07-18T00:00:00.000Z
Link: CVE-2019-13713
Vulnrichment
No data.
NVD
Status : Modified
Published: 2019-11-25T15:15:33.387
Modified: 2024-11-21T04:25:33.597
Link: CVE-2019-13713
Redhat
OpenCVE Enrichment
No data.
Weaknesses