CVE-2016-5181

Summary

Blink in Google Chrome prior to 54.0.2840.59 for Windows, Mac, and Linux; 54.0.2840.85 for Android permitted execution of v8 microtasks while the DOM was in an inconsistent state, which allowed a remote attacker to inject arbitrary scripts or HTML (UXSS) via crafted HTML pages.

Affected Software

VendorProductVersion RangeStatus
n/aChrome prior to 54.0.2840.59 for Windows, Mac, and Linux; 54.0.2840.85 for AndroidChrome prior to 54.0.2840.59 for Windows, Mac, and Linux; 54.0.2840.85 for Androidaffected

Weaknesses

  • UXSS

ADP Enrichment

CVE Program Container

Additional References

References