CVE-2020-6408

MEDIUM 6.5

Our Analysis: General Purpose

Our model has classified this vulnerability as relevant to General Purpose Systems, helping your team prioritize efforts effectively.

Published Date February 11, 2020

Last Modified November 21, 2024

CVSS Vector Not Available

Description

Insufficient policy enforcement in CORS in Google Chrome prior to 80.0.3987.87 allowed a local attacker to obtain potentially sensitive information via a crafted HTML page.

Our Analysis: General Purpose

Description

Potentially Affected Vendors