Published: 25/11/2019 Updated: 14/10/2022
CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6
CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Vulnerability Summary

Inappropriate implementation in installer in Google Chrome on Windows before 78.0.3904.70 allowed a local malicious user to perform privilege escalation via a crafted executable.

Most Upvoted Vulmon Research Post

There is no Researcher post for this vulnerability
Would you like to share something about it? Sign up now to share your knowledge with the community.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

google chrome

opensuse backports sle 15.0

Vendor Advisories

Severity Unknown Remote Unknown Type Unknown Description AVG-1053 chromium 7703865120-1 780390470-1 Unknown Fixed ...
Synopsis Important: chromium-browser security update Type/Severity Security Advisory: Important Topic An update for chromium-browser is now available for Red Hat Enterprise Linux 6 SupplementaryRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability S ...
The Chrome team is delighted to announce the promotion of Chrome 78 to the stable channel for Windows, Mac and Linux This will roll out over the coming days/weeks Chrome 780390470 contains a number of fixes and improvements -- a list of changes is available in the log Watch out for upcoming Chrome and Chromium blog po ...
Arch Linux Security Advisory ASA-201910-17 ========================================== Severity: High Date : 2019-10-26 CVE-ID : CVE-2019-13699 CVE-2019-13700 CVE-2019-13701 CVE-2019-13702 CVE-2019-13703 CVE-2019-13704 CVE-2019-13705 CVE-2019-13706 CVE-2019-13707 CVE-2019-13708 CVE-2019-13709 CVE-2019-13710 CVE-201 ...
Several vulnerabilities have been discovered in the chromium web browser CVE-2019-5869 Zhe Jin discovered a use-after-free issue CVE-2019-5870 Guang Gong discovered a use-after-free issue CVE-2019-5871 A buffer overflow issue was discovered in the skia library CVE-2019-5872 Zhe Jin discovered a use-after-free issue CVE-2019-58 ...

Mailing Lists

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - -------------------------------------------------------------------------- Debian Security Advisory DSA-4562-1 security () debian org wwwdebianorg/security/ Michael Gilbert November 10, 2019 wwwdebianorg/security/faq ...

Github Repositories

CVE-2019-13702 Inappropriate implementation in installer in Google Chrome on Windows prior to 780390470 allowed a local attacker to perform privilege escalation via a crafted executable authentication complexity vector NONE MEDIUM NETWORK confidentiality integrity availability PARTIAL PARTIAL PARTIAL CVSS Score: 68 References crbugcom/991125