CVE-2019-13755 — Google Chrome vulnerability
8 documents8 sources
Severity
4.3MEDIUMNVD
EPSS
1.9%
top 16.96%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedDec 10
Latest updateMay 24
Description
Insufficient policy enforcement in extensions in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to disable extensions via a crafted HTML page.
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:NExploitability: 2.8 | Impact: 1.4
Affected Packages6 packages
Also affects: Debian Linux 10.0, 9.0, Fedora 30, 31, Enterprise Linux 6.0
🔴Vulnerability Details
3GHSA▶
GHSA-vwq8-vgxf-g9ch: Insufficient policy enforcement in extensions in Google Chrome prior to 79↗2022-05-24
CVEList▶
CVE-2019-13755: Insufficient policy enforcement in extensions in Google Chrome prior to 79↗2019-12-10
OSV▶
CVE-2019-13755: Insufficient policy enforcement in extensions in Google Chrome prior to 79↗2019-12-10