CWE-290

CVE-2019-13701

February 26, 2023 by

Incorrect implementation in navigation in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.

CVE-2019-13703

February 26, 2023 by

Insufficient policy enforcement in the Omnibox in Google Chrome on Android prior to 78.0.3904.70 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.

CVE-2019-13704

February 26, 2023 by

Insufficient policy enforcement in navigation in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to bypass content security policy via a crafted HTML page.

CVE-2019-1357

February 26, 2023 by

A spoofing vulnerability exists when Microsoft Browsers improperly handle browser cookies, aka ‘Microsoft Browser Spoofing Vulnerability’. This CVE ID is unique from CVE-2019-0608.

CVE-2019-1318

February 26, 2023 by

A spoofing vulnerability exists when Transport Layer Security (TLS) accesses non- Extended Master Secret (EMS) sessions, aka ‘Microsoft Windows Transport Layer Security Spoofing Vulnerability’.

CVE-2019-1234

February 26, 2023 by

A spoofing vulnerability exists when Azure Stack fails to validate certain requests, aka ‘Azure Stack Spoofing Vulnerability’.