CVE-2019-3562
N/A
N/A
Summary
A remote web page could inject arbitrary HTML code into the Oculus Browser UI, allowing an attacker to spoof UI and potentially execute code. This affects the Oculus Browser starting from version 5.2.7 until 5.7.11.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Oculus | Oculus Browser | 5.7.11 | affected |
| Oculus | Oculus Browser | 5.2.7 < unspecified | affected |
| Oculus | Oculus Browser | unspecified < 5.2.7 | unaffected |
Weaknesses
- CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component (CWE-74)
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.