CVE-2019-0990: Exposure of Sensitive Information to an Unauthorized Actor

June 12, 2019 (updated June 13, 2019)

An information disclosure vulnerability exists when the scripting engine does not properly handle objects in memory in Microsoft Edge, aka ‘Scripting Engine Information Disclosure Vulnerability’. This CVE ID is unique from CVE-2019-1023.

References

nvd.nist.gov/vuln/detail/CVE-2019-0990
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0990

Code Behaviors & Features

Detect and mitigate CVE-2019-0990 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →