Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-cwfx-2q51-87dj
Vulnerability ID VCID-cwfx-2q51-87dj
Aliases CVE-2019-13691
Summary chromium-browser: Omnibox spoof
Status Published
Exploitability 0.5
Weighted Severity 7.9
Risk 4.0
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
cvssv3 8.8 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-13691.json
epss 0.00236 https://api.first.org/data/v1/epss?cve=CVE-2019-13691
epss 0.00236 https://api.first.org/data/v1/epss?cve=CVE-2019-13691
epss 0.00236 https://api.first.org/data/v1/epss?cve=CVE-2019-13691
epss 0.00236 https://api.first.org/data/v1/epss?cve=CVE-2019-13691
epss 0.00236 https://api.first.org/data/v1/epss?cve=CVE-2019-13691
epss 0.00236 https://api.first.org/data/v1/epss?cve=CVE-2019-13691
epss 0.00236 https://api.first.org/data/v1/epss?cve=CVE-2019-13691
cvssv2 4.3 https://nvd.nist.gov/vuln/detail/CVE-2019-13691
cvssv3.1 4.3 https://nvd.nist.gov/vuln/detail/CVE-2019-13691
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-13691.json
https://api.first.org/data/v1/epss?cve=CVE-2019-13691
https://chromereleases.googleblog.com/2019/09/stable-channel-update-for-desktop.html
https://crbug.com/966914
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13659
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13660
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13661
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13662
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13663
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13664
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13665
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13666
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13667
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13668
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13669
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13670
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13671
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13672
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13673
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13674
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13675
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13676
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13677
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13678
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13679
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13680
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13681
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13682
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13683
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13685
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13686
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13687
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13688
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13691
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13692
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13693
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13694
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13695
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13696
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13697
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13699
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13700
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13701
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13703
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13704
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13705
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13706
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13707
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13708
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13709
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13710
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13711
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13713
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13714
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13715
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13716
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13717
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13718
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13719
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13720
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13721
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13765
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13766
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-25154
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5869
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5870
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5871
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5872
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5874
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5875
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5876
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5877
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5878
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5879
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5880
1762372 https://bugzilla.redhat.com/show_bug.cgi?id=1762372
cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
CVE-2019-13691 https://nvd.nist.gov/vuln/detail/CVE-2019-13691
RHSA-2019:3211 https://access.redhat.com/errata/RHSA-2019:3211
No exploits are available.
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-13691.json
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N Found at https://nvd.nist.gov/vuln/detail/CVE-2019-13691
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N Found at https://nvd.nist.gov/vuln/detail/CVE-2019-13691
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Exploit Prediction Scoring System (EPSS)
Percentile 0.46417
EPSS Score 0.00236
Published At April 1, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-04-01T14:16:29.261737+00:00 RedHat Importer Import https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-13691.json 38.0.0