Lucene search

K

ChromeCVELIST:CVE-2019-13757

HistoryDec 10, 2019 - 9:01 p.m.

CVE-2019-13757

2019-12-1021:01:55

Chrome

www.cve.org

8

AI Score

5.3

Confidence

High

EPSS

0.003

Percentile

68.3%

Incorrect security UI in Omnibox in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to perform domain spoofing via IDN homographs via a crafted domain name.

CNA Affected

[
  {
    "product": "Chrome",
    "vendor": "Google",
    "versions": [
      {
        "lessThan": "79.0.3945.79",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

References

lists.opensuse.org/opensuse-security-announce/2019-12/msg00032.html

lists.opensuse.org/opensuse-security-announce/2019-12/msg00036.html

access.redhat.com/errata/RHSA-2019:4238

chromereleases.googleblog.com/2019/12/stable-channel-update-for-desktop.html

crbug.com/884693

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2Z5M4FPUMDNX2LDPHJKN5ZV5GIS2AKNU/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N5CIQCVS6E3ULJCNU7YJXJPO2BLQZDTK/

seclists.org/bugtraq/2020/Jan/27

security.gentoo.org/glsa/202003-08

www.debian.org/security/2020/dsa-4606

AI Score

5.3

Confidence

High

EPSS

0.003

Percentile

68.3%

Related for CVELIST:CVE-2019-13757

redhatcve1 ubuntucve1 cve1 nvd1 prion1 debiancve1 nessus8 suse2 redhat1 openvas8 fedora2 kaspersky2 chrome1 debian2 mageia1 osv3 gentoo1