Vulnerability: Malicious Webview Exploiting Incognito BrowserContext Destruction Queue in Oxide

CVE-2016-1586 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

A malicious webview could install long-lived unload handlers that re-use an incognito BrowserContext that is queued for destruction in versions of Oxide before 1.18.3.

Learn more about our Web App Pen Testing.