A remote web page could inject arbitrary HTML code into the Oculus Browser UI, allowing an attacker to spoof UI and potentially execute code. This affects the Oculus Browser starting from version 5.2.7 until 5.7.11.
References
Link | Resource |
---|---|
https://www.facebook.com/security/advisories/cve-2019-3562 | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: facebook
Published: 2019-04-29T15:32:45
Updated: 2019-04-29T15:32:45
Reserved: 2019-01-02T00:00:00
Link: CVE-2019-3562
JSON object: View
NVD Information
Status : Modified
Published: 2019-04-29T16:29:00.983
Modified: 2019-10-09T23:49:15.367
Link: CVE-2019-3562
JSON object: View
Redhat Information
No data.