Описание
Cross-site scripting (XSS) vulnerability in Blink, as used in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, allows remote attackers to inject arbitrary web script or HTML via vectors related to widget updates, aka "Universal XSS (UXSS)."
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 53.0.2785.143-0ubuntu1.1307 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [53.0.2785.143-0ubuntu0.14.04.1.1142]] |
| precise | ignored | |
| trusty | released | 53.0.2785.143-0ubuntu0.14.04.1.1142 |
| trusty/esm | DNE | trusty was released [53.0.2785.143-0ubuntu0.14.04.1.1142] |
| upstream | released | 53.0.2785.92 |
| vivid/stable-phone-overlay | DNE | |
| vivid/ubuntu-core | DNE | |
| xenial | released | 53.0.2785.143-0ubuntu0.16.04.1.1254 |
| yakkety | released | 53.0.2785.143-0ubuntu1.1307 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 1.17.7-0ubuntu1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [1.17.7-0ubuntu0.14.04.1]] |
| esm-infra/xenial | released | 1.17.7-0ubuntu0.16.04.1 |
| precise | DNE | |
| trusty | released | 1.17.7-0ubuntu0.14.04.1 |
| trusty/esm | DNE | trusty was released [1.17.7-0ubuntu0.14.04.1] |
| upstream | released | 1.17.6 |
| vivid/stable-phone-overlay | released | 1.17.9-0ubuntu0.15.04.1~overlay2 |
| vivid/ubuntu-core | DNE | |
| xenial | released | 1.17.7-0ubuntu0.16.04.1 |
Показывать по
4.3 Medium
CVSS2
6.1 Medium
CVSS3
Связанные уязвимости
Cross-site scripting (XSS) vulnerability in Blink, as used in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, allows remote attackers to inject arbitrary web script or HTML via vectors related to widget updates, aka "Universal XSS (UXSS)."
Cross-site scripting (XSS) vulnerability in Blink, as used in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, allows remote attackers to inject arbitrary web script or HTML via vectors related to widget updates, aka "Universal XSS (UXSS)."
Cross-site scripting (XSS) vulnerability in Blink, as used in Google C ...
Cross-site scripting (XSS) vulnerability in Blink, as used in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, allows remote attackers to inject arbitrary web script or HTML via vectors related to widget updates, aka "Universal XSS (UXSS)."
4.3 Medium
CVSS2
6.1 Medium
CVSS3