CVE-2019-5864

Insufficient data validation in CORS in Google Chrome prior to 76.0.3809.87 allowed an attacker who convinced a user to install a malicious extension to bypass content security policy via a crafted Chrome Extension.
Configurations

Configuration 1

cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*

Information

Published : 2019-11-25 03:15

Updated : 2021-07-21 11:39


NVD link : CVE-2019-5864

Mitre link : CVE-2019-5864

Products Affected
No products.