CVE-2026-9971

Опубликовано: 27 мая 2026

Источник: redhat

CVSS3: 8.8

EPSS Низкий

Описание

Inappropriate implementation in iOS in Google Chrome on iOS prior to 148.0.7778.216 allowed a remote attacker who convinced a user to engage in specific UI gestures to inject arbitrary scripts or HTML (UXSS) via a crafted HTML page. (Chromium security severity: High)

An inappropriate implementation flaw was found in the iOS component of the Chromium browser. Upstream bug(s): https://code.google.com/p/chromium/issues/detail?id=508448586

Отчет

Red Hat Product Security rates the severity of this flaw as determined by the Google Chrome Security Advisory.

Ссылки на источники

Дополнительная информация

Статус:

Important

https://bugzilla.redhat.com/show_bug.cgi?id=2483130chromium-browser: chromium-browser: Inappropriate implementation in iOS

EPSS

Процентиль: 5%

0.00159

Низкий

8.8 High

CVSS3

Связанные уязвимости

CVE-2026-9971

CVSS3: 5.4

nvd

28 дней назад

CVE-2026-9971

msrc

25 дней назад

Chromium: CVE-2026-9971 Inappropriate implementation in iOS

CVE-2026-9971

CVSS3: 5.4

debian

28 дней назад

Inappropriate implementation in iOS in Google Chrome on iOS prior to 1 ...

GHSA-3g4q-5xwc-2fr8

CVSS3: 5.4

github

27 дней назад

openSUSE-SU-2026:20849-1

suse-cvrf

26 дней назад

Security update for chromium

EPSS

Процентиль: 5%

0.00159

Низкий

8.8 High

CVSS3