Lucene search
HistorySep 13, 2012 - 8:55 p.m.
CVE-2012-4905
cve-2012-4905
cross-site scripting
xss
google chrome
android
remote attackers
arbitrary web script
html
intent object
universal xss
uxss
nvd
5 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.001 Low
EPSS
Percentile
47.3%
Cross-site scripting (XSS) vulnerability in Google Chrome before 18.0.1025308 on Android allows remote attackers to inject arbitrary web script or HTML via an extra in an Intent object, aka “Universal XSS (UXSS).”
| CPE | Name | Operator | Version |
|---|---|---|---|
| google:chrome | google chrome | le | 18.0.1025306 |
Related
debiancve
debiancve
CVE-2012-4905
2012-09-13 20:55:00
prion
prion
Cross site scripting
2012-09-13 20:55:00
packetstorm
packetstorm
Chrome For Android Universal Cross Site Scripting
2013-01-07 00:00:00
ubuntucve
ubuntucve
CVE-2012-4905
2012-09-13 00:00:00
securityvulns
securityvulns
Google Chrome for Android multiple security vulnerabilities
2013-01-10 00:00:00
cvelist
cvelist
CVE-2012-4905
2022-10-03 16:15:33
5 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.001 Low
EPSS
Percentile
47.3%
Related for CVE-2012-4905