CVE-2019-13727

Insufficient policy enforcement in WebSockets in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to bypass same origin policy via a crafted HTML page.

Date published : 2019-12-10

https://seclists.org/bugtraq/2020/Jan/27

https://www.debian.org/security/2020/dsa-4606