The host is installed with Google Chrome before 45.0.2454.85 and is prone to a same-origin-policy bypass vulnerability. A flaw is present in the application, which fails to properly access a Service Worker. Successful exploitation allows remote attackers to bypass the Same Origin Policy.