AI Score
Confidence
Low
SSVC
Exploitation
none
Automatable
no
Technical Impact
total
In Min before 1.31.0, local files are not correctly treated as unique security origins, which allows them to improperly request cross-origin resources. For example, a local file may request other local files through an XML document.
github.com/minbrowser/min/security/advisories/GHSA-4w9v-7h8h-rv8x