Published: 28/08/2018 Updated: 07/11/2023

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 6.5 | Impact Score: 3.6 | Exploitability Score: 2.8

VMScore: 384

Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N

Incorrect serialization in IPC in Google Chrome before 63.0.3239.84 allowed a remote malicious user to leak the value of a pointer via a crafted HTML page.

Vulnerable Product	Search on Vulmon	Subscribe to Product
debian debian linux 9.0
redhat enterprise linux desktop 6.0
redhat enterprise linux server 6.0
redhat enterprise linux workstation 6.0
google chrome

Synopsis Critical: chromium-browser security update Type/Severity Security Advisory: Critical Topic An update for chromium-browser is now available for Red Hat Enterprise Linux 6 SupplementaryRed Hat Product Security has rated this update as having a security impact of Critical A Common Vulnerability Scor ...

Several vulnerabilities have been discovered in the chromium web browser CVE-2017-15407 Ned Williamson discovered an out-of-bounds write issue CVE-2017-15408 Ke Liu discovered a heap overflow issue in the pdfium library CVE-2017-15409 An out-of-bounds write issue was discovered in the skia library CVE-2017-15410 Luat Nguyen dis ...

Incorrect serialization in IPC in Google Chrome prior to 630323984 allowed a remote attacker to leak the value of a pointer via a crafted HTML page ...

A pointer information disclosure has been found in the IPC call component of the Chromium browser before 630323984 ...

CWE-119 https://crbug.com/765512 https://access.redhat.com/errata/RHSA-2017:3401 https://security.gentoo.org/glsa/201801-03 https://chromereleases.googleblog.com/2017/12/stable-channel-update-for-desktop.html https://www.debian.org/security/2017/dsa-4064 https://access.redhat.com/errata/RHSA-2017:3401 https://nvd.nist.gov https://www.debian.org/security/./dsa-4064

CVE-2017-15415

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect