Home
Packages
Forums
Wiki
GitLab
Security
AUR
Download

issues
advisories
todo
stats
log
login

CVE-2019-13727 - log back

CVE-2019-13727 edited at 13 Jan 2020 16:21:55

Severity

-	Unknown
+	High

Remote

-	Unknown
+	Remote

Type

-	Unknown
+	Access restriction bypass

Description

+	Insufficient policy enforcement in WebSockets in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to bypass same origin policy via a crafted HTML page.

References

+	https://chromereleases.googleblog.com/2019/12/stable-channel-update-for-desktop.html

Notes

CVE-2019-13727 created at 11 Dec 2019 08:51:54