CVE-2019-19916
Last modified
CVE-2019-19916 is a medium-severity vulnerability rated 6.1/10 on the CVSS scale. In Midori Browser 0.5.11 (on Windows 10), Content Security Policy (CSP) is not applied correctly to all parts of multipart content sent with the multipart/x-mixed-replace MIME type. This could result in script running where CSP should have blocked it, allowing for cross-site scripting (XSS) and other attacks when the product renders the content as HTML. EPSS estimates a 1.57% chance of exploitation in the next 30 days.
Description
In Midori Browser 0.5.11 (on Windows 10), Content Security Policy (CSP) is not applied correctly to all parts of multipart content sent with the multipart/x-mixed-replace MIME type. This could result in script running where CSP should have blocked it, allowing for cross-site scripting (XSS) and other attacks when the product renders the content as HTML. Remediating this would also need to consider the polyglot case, e.g., a file that is a valid GIF image and also valid JavaScript.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Midori-Browser | Midori | 0.5.11 |
References
- https://github.com/V1n1v131r4/MIME-Confusion-Attack-on-Midori-Browser/blob/master/README.mdExploit, Third Party Advisory
- https://portswigger.net/research/bypassing-csp-using-polyglot-jpegsExploit, Third Party Advisory
- https://github.com/V1n1v131r4/MIME-Confusion-Attack-on-Midori-Browser/blob/master/README.mdExploit, Third Party Advisory
- https://portswigger.net/research/bypassing-csp-using-polyglot-jpegsExploit, Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2019-19916?
How severe is CVE-2019-19916?
How do I fix CVE-2019-19916?
Are you affected by CVE-2019-19916?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST