CVE-2019-3562

EPSS 1.1%CWE-74

A remote web page could inject arbitrary HTML code into the Oculus Browser UI, allowing an attacker to spoof UI and potentially execute code. This affects the Oculus Browser starting from version 5.2.7 until 5.7.11.

Affected products

Oculus · Oculus Browser

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://www.facebook.com/security/advisories/cve-2019-3562