The host is missing a high severity security update according to Google advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle crafted vectors. Successful exploitation allows attackers to cause denial of service, bypass the Same Origin Policy, spoof HTML5 application content or possibly have unspecified other impact.