Описание
Cross-site scripting (XSS) vulnerability in Google Chrome before 18.0.1025308 on Android allows remote attackers to inject arbitrary web script or HTML via an extra in an Intent object, aka "Universal XSS (UXSS)."
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 22.0.1229.79~r158531-0ubuntu1 |
| hardy | DNE | |
| lucid | released | 23.0.1271.97-0ubuntu0.10.04.1 |
| natty | ignored | end of life |
| oneiric | released | 23.0.1271.97-0ubuntu0.11.10.1 |
| precise | released | 20.0.1132.47~r144678-0ubuntu0.12.04.1 |
| quantal | not-affected | 22.0.1229.79~r158531-0ubuntu1 |
| upstream | needs-triage |
Показывать по
EPSS
4.3 Medium
CVSS2
Связанные уязвимости
Cross-site scripting (XSS) vulnerability in Google Chrome before 18.0.1025308 on Android allows remote attackers to inject arbitrary web script or HTML via an extra in an Intent object, aka "Universal XSS (UXSS)."
Cross-site scripting (XSS) vulnerability in Google Chrome before 18.0. ...
Cross-site scripting (XSS) vulnerability in Google Chrome before 18.0.1025308 on Android allows remote attackers to inject arbitrary web script or HTML via an extra in an Intent object, aka "Universal XSS (UXSS)."
EPSS
4.3 Medium
CVSS2