VYPR
Unrated severityNVD Advisory· Published Sep 27, 2019· Updated Aug 4, 2024

CVE-2019-11743

CVE-2019-11743

Description

Navigation events were not fully adhering to the W3C's "Navigation-Timing Level 2" draft specification in some instances for the unload event, which restricts access to detailed timing attributes to only be same-origin. This resulted in potential cross-origin information exposure of history through timing side-channel attacks. This vulnerability affects Firefox < 69, Thunderbird < 68.1, Thunderbird < 60.9, Firefox ESR < 60.9, and Firefox ESR < 68.1.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

74

Patches

Vulnerability mechanics

References

13

News mentions

0

No linked articles in our index yet.