HIGH 8.8 KEV Publié le 2017-10-27

CVE-2017-5070

Type confusion in V8 in Google Chrome prior to 59.0.3071.86 for Linux, Windows, and Mac, and 59.0.3071.92 for Android, allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.

CVSS v3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CISA Known Exploited Vulnerability

Ajouté au KEV: 2022-06-08
Deadline remédiation: 2022-06-22
Action requise: Apply updates per vendor instructions.
Ransomware: Non

Apps mobiles affectées

com.google.chrome.ios

1 CVE 1 KEV

Configurations CPE vulnérables

Vendor	Produit	Plateforme	Versions	CPE 2.3 URI
google	chrome	Android	<59.0.3071.86	cpe:2.3:a:google:chrome::::::::
google	chrome	iOS	<59.0.3071.86	cpe:2.3:a:google:chrome::::::::
google	chrome	Android	<59.0.3071.92	cpe:2.3:a:google:chrome::::::::
google	chrome	iOS	<59.0.3071.92	cpe:2.3:a:google:chrome::::::::

Voir sur NVD ↗ Catalogue CISA KEV ↗