VulnerableCode Package Details - pkg:alpm/archlinux/chromium@83.0.4103.106-1

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-ah3t-syrj-nkdf	Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in the arbitrary execution of code.	CVE-2020-6507
VCID-ucwp-bcjt-q7f4	Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in the arbitrary execution of code.	CVE-2020-6505
VCID-zv9w-wnfw-5ue5	Android WebView Universal Cross-site Scripting A universal cross-site scripting (UXSS) vulnerability, CVE-2020-6506 (https://crbug.com/1083819), has been identified in the Android WebView system component, which allows cross-origin iframes to execute arbitrary JavaScript in the top-level document. This vulnerability affects React Native apps which use a `react-native-webview` that allows navigation to arbitrary URLs, and when that app runs on systems with an Android WebView version prior to 83.0.4103.106. ## Pending mitigation Ensure users update their Android WebView system component via the Google Play Store to 83.0.4103.106 or higher to avoid this UXSS. 'react-native-webview' is working on a mitigation but it could take some time. ### References https://alesandroortiz.com/articles/uxss-android-webview-cve-2020-6506/	CVE-2020-6506 GHSA-36j3-xxf7-4pqg

Vulnerability

Summary

Aliases

VCID-ah3t-syrj-nkdf

Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in the arbitrary execution of code.

CVE-2020-6507

VCID-ucwp-bcjt-q7f4

Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in the arbitrary execution of code.

CVE-2020-6505

VCID-zv9w-wnfw-5ue5

Android WebView Universal Cross-site Scripting A universal cross-site scripting (UXSS) vulnerability, CVE-2020-6506 (https://crbug.com/1083819), has been identified in the Android WebView system component, which allows cross-origin iframes to execute arbitrary JavaScript in the top-level document. This vulnerability affects React Native apps which use a `react-native-webview` that allows navigation to arbitrary URLs, and when that app runs on systems with an Android WebView version prior to 83.0.4103.106. ## Pending mitigation Ensure users update their Android WebView system component via the Google Play Store to 83.0.4103.106 or higher to avoid this UXSS. 'react-native-webview' is working on a mitigation but it could take some time. ### References https://alesandroortiz.com/articles/uxss-android-webview-cve-2020-6506/

CVE-2020-6506
GHSA-36j3-xxf7-4pqg

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T18:25:48.868640+00:00	Arch Linux Importer	Fixing	VCID-ucwp-bcjt-q7f4	https://security.archlinux.org/AVG-1190	38.0.0
2026-04-01T18:25:48.843546+00:00	Arch Linux Importer	Fixing	VCID-zv9w-wnfw-5ue5	https://security.archlinux.org/AVG-1190	38.0.0
2026-04-01T18:25:48.823508+00:00	Arch Linux Importer	Fixing	VCID-ah3t-syrj-nkdf	https://security.archlinux.org/AVG-1190	38.0.0