Published: 24/04/2017 Updated: 07/11/2023

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 6.1 | Impact Score: 2.7 | Exploitability Score: 2.8

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

XSS Auditor in Google Chrome before 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android allowed detection of a blocked iframe load, which allowed a remote malicious user to brute force JavaScript variables via a crafted HTML page.

Vulnerable Product	Search on Vulmon	Subscribe to Product
google chrome
redhat enterprise linux desktop 6.0
redhat enterprise linux server 6.0
redhat enterprise linux workstation 6.0
debian debian linux 8.0
debian debian linux 9.0

Synopsis Important: chromium-browser security update Type/Severity Security Advisory: Important Topic An update for chromium-browser is now available for Red Hat Enterprise Linux 6 SupplementaryRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability S ...

Several security issues were fixed in Oxide ...

Several vulnerabilities have been discovered in the chromium web browser CVE-2017-5029 Holger Fuhrmannek discovered an integer overflow issue in the libxslt library CVE-2017-5030 Brendon Tiszka discovered a memory corruption issue in the v8 javascript library CVE-2017-5031 Looben Yang discovered a use-after-free issue in the ...

An information disclosure flaw has been found in the XSS Auditor component of the Chromium browser ...

CWE-79 https://chromereleases.googleblog.com/2017/03/stable-channel-update-for-desktop.html https://security.gentoo.org/glsa/201704-02 http://www.debian.org/security/2017/dsa-3810 http://www.securityfocus.com/bid/96767 https://crbug.com/667079 http://rhn.redhat.com/errata/RHSA-2017-0499.html https://access.redhat.com/errata/RHSA-2017:0499 https://usn.ubuntu.com/3236-1/https://nvd.nist.gov

CVE-2017-5045

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect