The host is installed with Google Chrome before 75.0.3770.80 and is prone to an incorrect CORS handling vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to have unspecified impact.