CVE-2016-5193

Summary

Google Chrome prior to 54.0 for iOS had insufficient validation of URLs for windows open by DOM, which allowed a remote attacker to bypass restrictions on navigation to certain URL schemes via crafted HTML pages.

Affected Software

VendorProductVersion RangeStatus
n/aChrome prior to 54.0 for iOSChrome prior to 54.0 for iOSaffected

Weaknesses

  • bypass restrictions on navigation to certain URL schemes

ADP Enrichment

CVE Program Container

Additional References

References