← Retour aux CVEs
CVE-2012-4904
N/ADescription
Cross-application scripting vulnerability in Google Chrome before 18.0.1025308 on Android allows remote attackers to inject arbitrary web script via unspecified vectors, as demonstrated by "Universal XSS (UXSS)" attacks against the current tab.
Details CVE
Score CVSS v3.1N/A
Publie9/13/2012
Derniere modification4/29/2026
Sourcenvd
Observations honeypot0
Produits affectes
google:androidgoogle:chrome
Faiblesses (CWE)
CWE-79
References
https://code.google.com/p/chromium/issues/detail?id=138035(cve@mitre.org)
http://googlechromereleases.blogspot.com/2012/09/chrome-for-android-update.html(af854a3a-2127-422b-91ae-364da2661108)
https://code.google.com/p/chromium/issues/detail?id=138035(af854a3a-2127-422b-91ae-364da2661108)
Correlations IOC
Aucune correlation enregistree
This product uses data from the NVD API but is not endorsed or certified by the NVD.