VYPR
Unrated severityNVD Advisory· Published Sep 26, 2012· Updated Jun 16, 2026

CVE-2012-2886

CVE-2012-2886

Description

Cross-site scripting (XSS) vulnerability in Google Chrome before 22.0.1229.79 allows remote attackers to inject arbitrary web script or HTML via vectors related to the Google V8 bindings, aka "Universal XSS (UXSS)."

Affected products

57
  • Google/Chrome54 versions
    cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*+ 53 more
    • cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*range: <=22.0.1229.78
    • cpe:2.3:a:google:chrome:22.0.1229.0:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.1:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.10:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.11:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.12:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.14:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.16:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.17:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.18:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.2:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.20:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.21:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.22:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.23:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.24:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.25:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.26:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.27:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.28:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.29:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.3:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.31:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.32:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.33:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.35:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.36:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.37:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.39:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.4:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.48:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.49:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.50:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.51:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.52:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.53:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.54:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.55:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.56:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.57:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.58:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.59:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.6:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.60:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.62:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.63:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.64:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.65:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.67:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.7:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.76:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.8:*:*:*:*:*:*:*
    • cpe:2.3:a:google:chrome:22.0.1229.9:*:*:*:*:*:*:*
    • (no CPE)range: < 22.0.1229.79
  • OpenSUSE/openSUSE2 versions
    cpe:2.3:o:opensuse:opensuse:12.1:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:opensuse:opensuse:12.1:*:*:*:*:*:*:*
    • cpe:2.3:o:opensuse:opensuse:12.2:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.