Insufficient policy enforcement in Chromium in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to perform domain spoofing via a crafted HTML page.
References
Link | Resource |
---|---|
https://crbug.com/875178 | Exploit Vendor Advisory |
https://chromereleases.googleblog.com/2019/09/stable-channel-update-for-desktop.html | Release Notes Vendor Advisory |
Configurations
Information
Published : 2019-11-25 07:15
Updated : 2019-12-02 09:35
NVD link : CVE-2019-13676
Mitre link : CVE-2019-13676
JSON object : View
CWE
CWE-732
Incorrect Permission Assignment for Critical Resource
Products Affected
- chrome