CVE-2019-13693

Опубликовано: 25 нояб. 2019

Источник: debian

EPSS Низкий

Описание

Use after free in IndexedDB in Google Chrome prior to 77.0.3865.120 allowed a remote attacker who had compromised the renderer process to execute arbitrary code via a crafted HTML page.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
chromium	fixed	78.0.3904.87-1		package
chromium	end-of-life		stretch	package

EPSS

Процентиль: 83%

0.0194

Низкий

Связанные уязвимости

CVE-2019-13693

CVSS3: 8.8

ubuntu

около 6 лет назад

Use after free in IndexedDB in Google Chrome prior to 77.0.3865.120 allowed a remote attacker who had compromised the renderer process to execute arbitrary code via a crafted HTML page.

CVE-2019-13693

CVSS3: 8.8

redhat

больше 6 лет назад

Use after free in IndexedDB in Google Chrome prior to 77.0.3865.120 allowed a remote attacker who had compromised the renderer process to execute arbitrary code via a crafted HTML page.

CVE-2019-13693

CVSS3: 8.8

nvd

около 6 лет назад

Use after free in IndexedDB in Google Chrome prior to 77.0.3865.120 allowed a remote attacker who had compromised the renderer process to execute arbitrary code via a crafted HTML page.

GHSA-ch82-rwfx-hg86

github

больше 3 лет назад

Use after free in IndexedDB in Google Chrome prior to 77.0.3865.120 allowed a remote attacker who had compromised the renderer process to execute arbitrary code via a crafted HTML page.

BDU:2020-01605

CVSS3: 8.8

fstec

больше 6 лет назад

Уязвимость встроенной базы данных IndexedDB браузера Google Chrome, позволяющая нарушителю получить несанкционированный доступ к информации и нарушить ее целостность и доступность

EPSS

Процентиль: 83%

0.0194

Низкий