[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2019-13664":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T20:55:33.689Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":424,"aliases":425,"duplicate_of":9,"upstream":426,"downstream":427,"duplicates":452,"related":453,"reserved_at":9,"published_at":462,"modified_at":463,"state":464,"summary":465,"references_raw":474,"kevs":485,"epss":486,"epss_history":489,"metrics":748,"affected":759},"CVE-2019-13664","Insufficient policy enforcement in Blink in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to bypass content security policy via a crafted HTML page.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-346","Origin Validation Error","The product does not properly verify that the source of data or communication is valid.","weakness","Draft","Class",[19,23,76,88,92,263,267,271,275,279,283,287,291,412,416,420],{"id":20,"name":21,"techniques":22},"CAPEC-111","JSON Hijacking (aka JavaScript Hijacking)",[],{"id":24,"name":25,"techniques":26},"CAPEC-141","Cache Poisoning",[27],{"id":28,"name":29,"tactics":30,"countermeasures":37},"T1557.002","ARP Cache Poisoning",[31,34],{"id":32,"name":33},"TA0031","Credential Access",{"id":35,"name":36},"TA0100","Collection",[38,43,47,51,55,59,63,67,71],{"id":39,"name":40,"tactic":41},"D3-UGLPA","User Geolocation Logon Pattern Analysis",{"name":42},"Detect",{"id":44,"name":45,"tactic":46},"D3-PMAD","Protocol Metadata Anomaly Detection",{"name":42},{"id":48,"name":49,"tactic":50},"D3-CSPP","Client-server Payload Profiling",{"name":42},{"id":52,"name":53,"tactic":54},"D3-PHDURA","Per Host Download-Upload Ratio Analysis",{"name":42},{"id":56,"name":57,"tactic":58},"D3-NTSA","Network Traffic Signature Analysis",{"name":42},{"id":60,"name":61,"tactic":62},"D3-APCA","Application Protocol Command Analysis",{"name":42},{"id":64,"name":65,"tactic":66},"D3-NTCD","Network Traffic Community Deviation",{"name":42},{"id":68,"name":69,"tactic":70},"D3-RTSD","Remote Terminal Session Detection",{"name":42},{"id":72,"name":73,"tactic":74},"D3-NTF","Network Traffic Filtering",{"name":75},"Isolate",{"id":77,"name":78,"techniques":79},"CAPEC-142","DNS Cache Poisoning",[80],{"id":81,"name":82,"tactics":83,"countermeasures":87},"T1584.002","DNS Server",[84],{"id":85,"name":86},"TA0042","Resource Development",[],{"id":89,"name":90,"techniques":91},"CAPEC-160","Exploit Script-Based APIs",[],{"id":93,"name":94,"techniques":95},"CAPEC-21","Exploitation of Trusted Identifiers",[96,211,239],{"id":97,"name":98,"tactics":99,"countermeasures":109},"T1134","Access Token Manipulation",[100,103,106],{"id":101,"name":102},"TA0030","Defense Evasion",{"id":104,"name":105},"TA0005","Stealth",{"id":107,"name":108},"TA0111","Privilege Escalation",[110,115,119,123,127,131,135,139,143,148,152,156,161,166,170,174,178,182,187,191,195,199,203,207],{"id":111,"name":112,"tactic":113},"D3-CI","Configuration Inventory",{"name":114},"Model",{"id":116,"name":117,"tactic":118},"D3-NTPM","Network Traffic Policy Mapping",{"name":114},{"id":120,"name":121,"tactic":122},"D3-AM","Access Modeling",{"name":114},{"id":124,"name":125,"tactic":126},"D3-AEM","Application Exception Monitoring",{"name":42},{"id":128,"name":129,"tactic":130},"D3-SCA","System Call Analysis",{"name":42},{"id":132,"name":133,"tactic":134},"D3-CCSA","Credential Compromise Scope Analysis",{"name":42},{"id":136,"name":137,"tactic":138},"D3-OPM","Operational Process Monitoring",{"name":42},{"id":140,"name":141,"tactic":142},"D3-PSA","Process Spawn Analysis",{"name":42},{"id":144,"name":145,"tactic":146},"D3-ST","Session Termination",{"name":147},"Evict",{"id":149,"name":150,"tactic":151},"D3-CR","Credential Revocation",{"name":147},{"id":153,"name":154,"tactic":155},"D3-ANCI","Authentication Cache Invalidation",{"name":147},{"id":157,"name":158,"tactic":159},"D3-DUC","Decoy User Credential",{"name":160},"Deceive",{"id":162,"name":163,"tactic":164},"D3-CH","Credential Hardening",{"name":165},"Harden",{"id":167,"name":168,"tactic":169},"D3-MFA","Multi-factor Authentication",{"name":165},{"id":171,"name":172,"tactic":173},"D3-CRO","Credential Rotation",{"name":165},{"id":175,"name":176,"tactic":177},"D3-TB","Token Binding",{"name":165},{"id":179,"name":180,"tactic":181},"D3-TBA","Token-based Authentication",{"name":165},{"id":183,"name":184,"tactic":185},"D3-RC","Restore Configuration",{"name":186},"Restore",{"id":188,"name":189,"tactic":190},"D3-RIC","Reissue Credential",{"name":186},{"id":192,"name":193,"tactic":194},"D3-SCF","System Call Filtering",{"name":75},{"id":196,"name":197,"tactic":198},"D3-CTS","Credential Transmission Scoping",{"name":75},{"id":200,"name":201,"tactic":202},"D3-EAL","Executable Allowlisting",{"name":75},{"id":204,"name":205,"tactic":206},"D3-EDL","Executable Denylisting",{"name":75},{"id":208,"name":209,"tactic":210},"D3-HBPI","Hardware-based Process Isolation",{"name":75},{"id":212,"name":213,"tactics":214,"countermeasures":216},"T1528","Steal Application Access Token",[215],{"id":32,"name":33},[217,219,221,223,225,227,229,231,233,235,237],{"id":132,"name":133,"tactic":218},{"name":42},{"id":149,"name":150,"tactic":220},{"name":147},{"id":153,"name":154,"tactic":222},{"name":147},{"id":157,"name":158,"tactic":224},{"name":160},{"id":162,"name":163,"tactic":226},{"name":165},{"id":167,"name":168,"tactic":228},{"name":165},{"id":171,"name":172,"tactic":230},{"name":165},{"id":175,"name":176,"tactic":232},{"name":165},{"id":179,"name":180,"tactic":234},{"name":165},{"id":188,"name":189,"tactic":236},{"name":186},{"id":196,"name":197,"tactic":238},{"name":75},{"id":240,"name":241,"tactics":242,"countermeasures":244},"T1539","Steal Web Session Cookie",[243],{"id":32,"name":33},[245,247,249,251,253,255,257,259,261],{"id":132,"name":133,"tactic":246},{"name":42},{"id":149,"name":150,"tactic":248},{"name":147},{"id":153,"name":154,"tactic":250},{"name":147},{"id":157,"name":158,"tactic":252},{"name":160},{"id":162,"name":163,"tactic":254},{"name":165},{"id":167,"name":168,"tactic":256},{"name":165},{"id":171,"name":172,"tactic":258},{"name":165},{"id":188,"name":189,"tactic":260},{"name":186},{"id":196,"name":197,"tactic":262},{"name":75},{"id":264,"name":265,"techniques":266},"CAPEC-384","Application API Message Manipulation via Man-in-the-Middle",[],{"id":268,"name":269,"techniques":270},"CAPEC-385","Transaction or Event Tampering via Application API Manipulation",[],{"id":272,"name":273,"techniques":274},"CAPEC-386","Application API Navigation Remapping",[],{"id":276,"name":277,"techniques":278},"CAPEC-387","Navigation Remapping To Propagate Malicious Content",[],{"id":280,"name":281,"techniques":282},"CAPEC-388","Application API Button Hijacking",[],{"id":284,"name":285,"techniques":286},"CAPEC-510","SaaS User Request Forgery",[],{"id":288,"name":289,"techniques":290},"CAPEC-59","Session Credential Falsification through Prediction",[],{"id":292,"name":293,"techniques":294},"CAPEC-60","Reusing Session IDs (aka Session Replay)",[295,325],{"id":296,"name":297,"tactics":298,"countermeasures":302},"T1134.001","Token Impersonation/Theft",[299,300,301],{"id":101,"name":102},{"id":104,"name":105},{"id":107,"name":108},[303,305,307,309,311,313,315,317,319,321,323],{"id":132,"name":133,"tactic":304},{"name":42},{"id":149,"name":150,"tactic":306},{"name":147},{"id":153,"name":154,"tactic":308},{"name":147},{"id":157,"name":158,"tactic":310},{"name":160},{"id":162,"name":163,"tactic":312},{"name":165},{"id":167,"name":168,"tactic":314},{"name":165},{"id":171,"name":172,"tactic":316},{"name":165},{"id":175,"name":176,"tactic":318},{"name":165},{"id":179,"name":180,"tactic":320},{"name":165},{"id":188,"name":189,"tactic":322},{"name":186},{"id":196,"name":197,"tactic":324},{"name":75},{"id":326,"name":327,"tactics":328,"countermeasures":333},"T1550.004","Web Session Cookie",[329,330],{"id":101,"name":102},{"id":331,"name":332},"TA0109","Lateral Movement",[334,336,338,340,342,344,346,348,350,354,358,360,362,366,370,374,378,380,382,384,386,388,390,392,394,398,400,402,406,410],{"id":39,"name":40,"tactic":335},{"name":42},{"id":44,"name":45,"tactic":337},{"name":42},{"id":48,"name":49,"tactic":339},{"name":42},{"id":52,"name":53,"tactic":341},{"name":42},{"id":56,"name":57,"tactic":343},{"name":42},{"id":60,"name":61,"tactic":345},{"name":42},{"id":64,"name":65,"tactic":347},{"name":42},{"id":68,"name":69,"tactic":349},{"name":42},{"id":351,"name":352,"tactic":353},"D3-PLA","Process Lineage Analysis",{"name":42},{"id":355,"name":356,"tactic":357},"D3-PSMD","Process Self-Modification Detection",{"name":42},{"id":140,"name":141,"tactic":359},{"name":42},{"id":132,"name":133,"tactic":361},{"name":42},{"id":363,"name":364,"tactic":365},"D3-PT","Process Termination",{"name":147},{"id":367,"name":368,"tactic":369},"D3-PS","Process Suspension",{"name":147},{"id":371,"name":372,"tactic":373},"D3-HR","Host Reboot",{"name":147},{"id":375,"name":376,"tactic":377},"D3-HS","Host Shutdown",{"name":147},{"id":149,"name":150,"tactic":379},{"name":147},{"id":153,"name":154,"tactic":381},{"name":147},{"id":157,"name":158,"tactic":383},{"name":160},{"id":162,"name":163,"tactic":385},{"name":165},{"id":167,"name":168,"tactic":387},{"name":165},{"id":171,"name":172,"tactic":389},{"name":165},{"id":188,"name":189,"tactic":391},{"name":186},{"id":72,"name":73,"tactic":393},{"name":75},{"id":395,"name":396,"tactic":397},"D3-KBPI","Kernel-based Process Isolation",{"name":75},{"id":192,"name":193,"tactic":399},{"name":75},{"id":208,"name":209,"tactic":401},{"name":75},{"id":403,"name":404,"tactic":405},"D3-ABPI","Application-based Process Isolation",{"name":75},{"id":407,"name":408,"tactic":409},"D3-WSAM","Web Session Access Mediation",{"name":75},{"id":196,"name":197,"tactic":411},{"name":75},{"id":413,"name":414,"techniques":415},"CAPEC-75","Manipulating Writeable Configuration Files",[],{"id":417,"name":418,"techniques":419},"CAPEC-76","Manipulating Web Input to File System Calls",[],{"id":421,"name":422,"techniques":423},"CAPEC-89","Pharming",[],[],[],[],[428,430,432,434,436,438,440,442,444,446,448,450],{"_key":429},"RHSA-2019:3211",{"_key":431},"UBUNTU-CVE-2019-13664",{"_key":433},"OPENSUSE-SU-2019:2155-1",{"_key":435},"OPENSUSE-SU-2019:2156-1",{"_key":437},"OPENSUSE-SU-2019:2447-1",{"_key":439},"OPENSUSE-SU-2019:2152-1",{"_key":441},"OPENSUSE-SU-2019:2153-1",{"_key":443},"OPENSUSE-SU-2024:10681-1",{"_key":445},"OPENSUSE-SU-2024:12948-1",{"_key":447},"DSA-4562-1",{"_key":449},"MGASA-2019-0283",{"_key":451},"DEBIAN-CVE-2019-13664",[],[454,455,456,457,458,459,460,461],{"_key":433},{"_key":435},{"_key":437},{"_key":439},{"_key":441},{"_key":443},{"_key":445},{"_key":449},"2019-11-25T14:22:53.000Z","2024-08-04T23:57:39.523Z","Modified",{"cisa_kev":466,"cisa_ransomware":466,"cisa_vendor":9,"epss_severity":467,"epss_score":468,"severity":469,"severity_score":470,"severity_version":471,"severity_source":472,"severity_vector":473,"severity_status":464},false,"low",0.00068,"medium",6.5,"v3.1","nvd","CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",[475,481],{"url":476,"sources":477,"tags":479},"https://chromereleases.googleblog.com/2019/09/stable-channel-update-for-desktop.html",[478,472],"cve.org",[480],"X Refsource MISC",{"url":482,"sources":483,"tags":484},"https://crbug.com/915538",[478,472],[480],[],{"date":487,"score":468,"percentile":488},"2026-06-05",0.21106,[490,493,496,499,502,505,508,511,514,517,520,522,525,528,531,535,538,541,544,547,550,553,556,559,562,565,568,571,574,577,580,583,586,588,591,594,597,600,603,606,608,610,613,616,619,622,625,627,630,632,635,638,641,644,647,650,653,655,658,661,664,667,670,673,676,679,682,685,688,691,694,697,699,702,705,708,711,714,716,719,721,723,726,729,732,735,737,740,743,746],{"date":491,"score":468,"percentile":492},"2025-11-04",0.21074,{"date":494,"score":468,"percentile":495},"2025-11-05",0.21072,{"date":497,"score":468,"percentile":498},"2025-11-06",0.21073,{"date":500,"score":468,"percentile":501},"2025-11-07",0.21081,{"date":503,"score":468,"percentile":504},"2025-11-08",0.21086,{"date":506,"score":468,"percentile":507},"2025-11-09",0.21051,{"date":509,"score":468,"percentile":510},"2025-11-10",0.20989,{"date":512,"score":468,"percentile":513},"2025-11-11",0.21012,{"date":515,"score":468,"percentile":516},"2025-11-12",0.21063,{"date":518,"score":468,"percentile":519},"2025-11-13",0.21075,{"date":521,"score":468,"percentile":516},"2025-11-14",{"date":523,"score":468,"percentile":524},"2025-11-15",0.21036,{"date":526,"score":468,"percentile":527},"2025-11-16",0.2099,{"date":529,"score":468,"percentile":530},"2025-11-17",0.20956,{"date":532,"score":533,"percentile":534},"2025-11-18",0.00047,0.09918,{"date":536,"score":533,"percentile":537},"2025-11-19",0.09928,{"date":539,"score":533,"percentile":540},"2025-11-20",0.09949,{"date":542,"score":468,"percentile":543},"2025-11-21",0.20921,{"date":545,"score":468,"percentile":546},"2025-11-22",0.20912,{"date":548,"score":468,"percentile":549},"2025-11-23",0.20878,{"date":551,"score":468,"percentile":552},"2025-11-24",0.20852,{"date":554,"score":468,"percentile":555},"2025-11-25",0.2084,{"date":557,"score":468,"percentile":558},"2025-11-26",0.20831,{"date":560,"score":468,"percentile":561},"2025-11-27",0.20791,{"date":563,"score":468,"percentile":564},"2025-11-28",0.20774,{"date":566,"score":468,"percentile":567},"2025-11-29",0.20766,{"date":569,"score":468,"percentile":570},"2025-11-30",0.20762,{"date":572,"score":468,"percentile":573},"2025-12-01",0.20806,{"date":575,"score":468,"percentile":576},"2025-12-02",0.20826,{"date":578,"score":468,"percentile":579},"2025-12-03",0.20839,{"date":581,"score":468,"percentile":582},"2025-12-04",0.20792,{"date":584,"score":468,"percentile":585},"2025-12-05",0.20835,{"date":587,"score":468,"percentile":555},"2025-12-06",{"date":589,"score":468,"percentile":590},"2025-12-07",0.20822,{"date":592,"score":468,"percentile":593},"2025-12-08",0.20838,{"date":595,"score":468,"percentile":596},"2025-12-09",0.20898,{"date":598,"score":468,"percentile":599},"2025-12-10",0.20969,{"date":601,"score":468,"percentile":602},"2025-12-11",0.21009,{"date":604,"score":468,"percentile":605},"2025-12-12",0.21023,{"date":607,"score":468,"percentile":605},"2025-12-13",{"date":609,"score":468,"percentile":527},"2025-12-14",{"date":611,"score":468,"percentile":612},"2025-12-15",0.20968,{"date":614,"score":468,"percentile":615},"2025-12-16",0.20995,{"date":617,"score":468,"percentile":618},"2025-12-17",0.21071,{"date":620,"score":468,"percentile":621},"2025-12-18",0.21156,{"date":623,"score":468,"percentile":624},"2025-12-19",0.21174,{"date":626,"score":468,"percentile":621},"2025-12-20",{"date":628,"score":468,"percentile":629},"2025-12-21",0.21103,{"date":631,"score":468,"percentile":618},"2025-12-22",{"date":633,"score":468,"percentile":634},"2025-12-23",0.21065,{"date":636,"score":468,"percentile":637},"2025-12-24",0.21089,{"date":639,"score":468,"percentile":640},"2025-12-25",0.2117,{"date":642,"score":468,"percentile":643},"2025-12-26",0.21164,{"date":645,"score":468,"percentile":646},"2025-12-27",0.21166,{"date":648,"score":468,"percentile":649},"2025-12-28",0.21125,{"date":651,"score":468,"percentile":652},"2025-12-29",0.21088,{"date":654,"score":468,"percentile":495},"2025-12-30",{"date":656,"score":468,"percentile":657},"2025-12-31",0.21135,{"date":659,"score":468,"percentile":660},"2026-01-01",0.21223,{"date":662,"score":468,"percentile":663},"2026-01-02",0.21224,{"date":665,"score":468,"percentile":666},"2026-01-03",0.21209,{"date":668,"score":468,"percentile":669},"2026-01-04",0.21115,{"date":671,"score":468,"percentile":672},"2026-01-05",0.21105,{"date":674,"score":468,"percentile":675},"2026-01-06",0.21117,{"date":677,"score":468,"percentile":678},"2026-01-07",0.21152,{"date":680,"score":468,"percentile":681},"2026-01-08",0.21203,{"date":683,"score":468,"percentile":684},"2026-01-09",0.21197,{"date":686,"score":468,"percentile":687},"2026-01-10",0.21179,{"date":689,"score":468,"percentile":690},"2026-01-11",0.21148,{"date":692,"score":468,"percentile":693},"2026-01-12",0.21113,{"date":695,"score":468,"percentile":696},"2026-01-13",0.2109,{"date":698,"score":468,"percentile":690},"2026-01-14",{"date":700,"score":468,"percentile":701},"2026-01-15",0.21153,{"date":703,"score":468,"percentile":704},"2026-01-16",0.21181,{"date":706,"score":468,"percentile":707},"2026-01-17",0.21189,{"date":709,"score":468,"percentile":710},"2026-01-18",0.2114,{"date":712,"score":468,"percentile":713},"2026-01-19",0.21093,{"date":715,"score":468,"percentile":495},"2026-01-20",{"date":717,"score":468,"percentile":718},"2026-01-21",0.21032,{"date":720,"score":468,"percentile":602},"2026-01-22",{"date":722,"score":468,"percentile":672},"2026-01-23",{"date":724,"score":468,"percentile":725},"2026-01-24",0.21126,{"date":727,"score":468,"percentile":728},"2026-01-25",0.21048,{"date":730,"score":468,"percentile":731},"2026-01-26",0.2094,{"date":733,"score":468,"percentile":734},"2026-01-27",0.20932,{"date":736,"score":468,"percentile":734},"2026-01-28",{"date":738,"score":468,"percentile":739},"2026-01-29",0.20892,{"date":741,"score":468,"percentile":742},"2026-01-30",0.20894,{"date":744,"score":468,"percentile":745},"2026-01-31",0.209,{"date":747,"score":468,"percentile":734},"2026-02-01",[749],{"source":472,"cvss_v2_0":750,"cvss_v3_0":9,"cvss_v3_1":755,"cvss_v4_0":9},{"baseScore":751,"baseSeverity":9,"vectorString":752,"impactScore":753,"exploitabilityScore":754},4.3,"AV:N/AC:M/Au:N/C:N/I:P/A:N",2.9,8.6,{"baseScore":470,"baseSeverity":756,"vectorString":473,"impactScore":757,"exploitabilityScore":758},"MEDIUM",6,7.2,[760],{"ecosystem":9,"name":761,"vendor":9,"product":761,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":762},"Chrome",[763,769],{"version":764,"is_range":765,"range_type":766,"version_start":9,"version_start_type":9,"version_end":767,"version_end_type":768,"fixed_in":9},"lt77.0.3865.75",true,"cpe","77.0.3865.75","excluding",{"version":770,"is_range":765,"range_type":478,"version_start":771,"version_start_type":772,"version_end":767,"version_end_type":768,"fixed_in":9},">= unspecified, \u003C 77.0.3865.75","unspecified","including"]