6.8
CVSSv2

CVE-2017-5009

Published: 17/02/2017 Updated: 05/01/2018
CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6
CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8
VMScore: 605
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Vulnerability Summary

WebRTC in Google Chrome before 56.0.2924.76 for Linux, Windows and Mac, and 56.0.2924.87 for Android, failed to perform proper bounds checking, which allowed a remote malicious user to potentially exploit heap corruption via a crafted HTML page.

Affected Products

Vendor Product Versions
GoogleChrome55.0.2883.87

Vendor Advisories

WebRTC in Google Chrome prior to 560292476 for Linux, Windows and Mac, and 560292487 for Android, failed to perform proper bounds checking, which allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page ...
An out of bounds memory access flaw was found in the WebRTC component of the Chromium browser ...
Synopsis Important: chromium-browser security update Type/Severity Security Advisory: Important Topic An update for chromium-browser is now available for Red Hat Enterprise Linux 6 SupplementaryRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability S ...
Several security issues were fixed in Oxide ...