Universal XSS (UXSS) vulnerability in Google Chrome before version 53.0.2785.89 on Windows and OS X and before version 53.0.2785.92 on Linux
CVE-2016-5148 · MEDIUM Severity
AV:N/AC:M/AU:N/C:N/I:P/A:N
Cross-site scripting (XSS) vulnerability in Blink, as used in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, allows remote attackers to inject arbitrary web script or HTML via vectors related to widget updates, aka "Universal XSS (UXSS)."
Learn more about our Cis Benchmark Audit For Distribution Independent Linux.