CVE-2019-0746: Exposure of Sensitive Information to an Unauthorized Actor

April 9, 2019 (updated August 24, 2020)

An information disclosure vulnerability exists when the scripting engine does not properly handle objects in memory in Microsoft Edge, aka ‘Scripting Engine Information Disclosure Vulnerability’.

References

nvd.nist.gov/vuln/detail/CVE-2019-0746
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0746

Detect and mitigate CVE-2019-0746 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →