virus logo Endpoint Vulnerability

Google Chrome CVE-2013-6657 Weak Authentication Vulnerability

description-logoDescription

core/html/parser/XSSAuditor.cpp in the XSS auditor in Blink, as used in Google Chrome before 33.0.1750.117, inserts the about:blank URL during certain blocking of FORM elements within HTTP requests, which allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via unspecified vectors.

affected-products-logoAffected Applications

Google Chrome

Version Updates

Date Version Status Detail
2019-09-11 1.00194
Modified
 Google Chrome
2019-03-12 1.00182
Modified
 Google Chrome
2018-04-10 1.00157
Modified
 Google Chrome
2018-02-15 1.00155
Modified
 Google Chrome
2017-12-13 1.00152
Modified
 Google Chrome
2017-07-25 1.00142
Modified
 Google Chrome

References

https://chromereleases.googleblog.com/search/label/Stable%20updates
ID 21415
Created Jul 11, 2018
Description
Updated		 May 31, 2024
CVE ID
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Windows
Vendor Google
Patch manual
Application Google Chrome