Vulnerability CVE-2019-13727: Information
Description
Insufficient policy enforcement in WebSockets in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to bypass same origin policy via a crafted HTML page.
Severity: HIGH (8.8) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Fixed packages
References to Advisories, Solutions, and Tools
Hyperlink | Resource |
---|---|
https://chromereleases.googleblog.com/2019/12/stable-channel-update-for-desktop.html |
|
https://crbug.com/944619 |
|
RHSA-2019:4238 |
|
openSUSE-SU-2019:2692 |
|
openSUSE-SU-2019:2694 |
|
20200120 [SECURITY] [DSA 4606-1] chromium security update |
|
DSA-4606 |
|
GLSA-202003-08 |
|
FEDORA-2019-1a10c04281 | |
FEDORA-2020-4355ea258e |