CVE-2019-13690

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2019-13690
Inappropriate implementation in OS in Google Chrome on ChromeOS prior to 75.0.3770.80 allowed a remote attacker to perform OS-level privilege escalation via a malicious file. (Chromium security severity: High)

9.6 /10

CVSS v3 : CRITICAL

V3 Legend

Vector :

Exploitability : 2.8 / Impact : 6.0

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope CHANGED

References
Link Resource
https://bugs.chromium.org/p/chromium/issues/detail?id=960111 Exploit Issue Tracking Patch Vendor Advisory
https://crbug.com/960111 Exploit Issue Tracking Patch Vendor Advisory
Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
cpe:2.3:o:google:chrome_os:-:*:*:*:*:*:*:*
History

No history.

Information

Published : 2023-08-25 19:15

Updated : 2023-08-31 00:39

NVD link : CVE-2019-13690

Mitre link : CVE-2019-13690

CVE.ORG link : CVE-2019-13690

JSON object : View

Products Affected

google

  • chrome_os
  • chrome
CWE
CWE-269

Improper Privilege Management