Universal XSS (UXSS) vulnerability in Google Chrome before version 53.0.2785.89 on Windows and OS X and before version 53.0.2785.92 on Linux

Universal XSS (UXSS) vulnerability in Google Chrome before version 53.0.2785.89 on Windows and OS X and before version 53.0.2785.92 on Linux

CVE-2016-5148 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in Blink, as used in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, allows remote attackers to inject arbitrary web script or HTML via vectors related to widget updates, aka "Universal XSS (UXSS)."

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.