CVE-2019-13659
Advisory lineage Upstream: 0 Downstream: 12
Modified
Published: 25 Nov 2019, 14:22
Last modified:04 Aug 2024, 23:57
Vulnerability Summary
Overall Risk (default)
low
17/100 CVSS Score
4.3 MEDIUM
v3.1 (nvd)
EPSS Score
0.17% LOW
0% probability 0.00%
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
25 Nov 2019, 14:22
Published
Vulnerability first disclosed
04 Aug 2024, 23:57
Last Modified
Vulnerability information updated
Description
IDN spoofing in Omnibox in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to perform domain spoofing via IDN homographs via a crafted domain name.
CVSS Metrics
- v3.1•MEDIUM•Score: 4.3CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
- v2.0•MEDIUM•Score: 4.3AV:N/AC:M/Au:N/C:N/I:P/A:N
EPSS Trends
Current EPSS score: 0.17%• Percentile: 37%
Affected Systems
- Unknown•Chrome
< 77.0.3865.75 | ≥ unspecified, < 77.0.3865.75