Endpoint Vulnerability

Security Vulnerability CVE-2016-5148 for Google Chrome

Description

Cross-site scripting (XSS) vulnerability in Blink, as used in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, allows remote attackers to inject arbitrary web script or HTML via vectors related to widget updates, aka \'Universal XSS (UXSS).\'

Affected Products

Google Chrome

References

CVE-2016-5148,