CVE-2019-13713

Medium

4.3/10

Summary

Insufficient policy enforcement in JavaScript in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to leak cross-origin data via a crafted HTML page.

Access Complexity: MEDIUM
AccessVector: NETWORK
Authentication: NONE
Integrity Impact: NONE
Confidentiality Impact: PARTIAL
Availability Impact: NONE

References

Advisory Timeline

Published Nov 25, 2019

CVE-2019-13713

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS