Unrestricted Access to Android APIs in Google Chrome for Android (CVE-2012-2854)

Unrestricted Access to Android APIs in Google Chrome for Android (CVE-2012-2854)

CVE-2012-4907 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

Google Chrome before 18.0.1025308 on Android does not properly restrict access from JavaScript code to Android APIs, which allows remote attackers to have an unspecified impact via a crafted web page.

Learn more about our Cis Benchmark Audit For Google Android.