0.005 Low
EPSS
Percentile
76.7%
Google Chrome prior to 54.0 for iOS had insufficient validation of URLs for windows open by DOM, which allowed a remote attacker to bypass restrictions on navigation to certain URL schemes via crafted HTML pages.
bugzilla.redhat.com/show_bug.cgi?id=1384364
googlechromereleases.blogspot.com/2016/10/stable-channel-update-for-desktop.html