Lucene search

K
cvelistChromeCVELIST:CVE-2019-13763
HistoryDec 10, 2019 - 9:01 p.m.

CVE-2019-13763

2019-12-1021:01:57
Chrome
www.cve.org
8
insufficient policy enforcement
google chrome
cross-origin data

AI Score

4.9

Confidence

High

EPSS

0.005

Percentile

77.1%

Insufficient policy enforcement in payments in Google Chrome prior to 79.0.3945.79 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page.

CNA Affected

[
  {
    "product": "Chrome",
    "vendor": "Google",
    "versions": [
      {
        "lessThan": "79.0.3945.79",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

AI Score

4.9

Confidence

High

EPSS

0.005

Percentile

77.1%