Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-4679-hxq5-w394

Опубликовано: 13 мая 2022
Источник: github
Github: Не прошло ревью
CVSS3: 5.3

Описание

A timing attack in SVG rendering in Google Chrome prior to 60.0.3112.78 for Linux, Windows, and Mac allowed a remote attacker to extract pixel values from a cross-origin page being iframe'd via a crafted HTML page.

A timing attack in SVG rendering in Google Chrome prior to 60.0.3112.78 for Linux, Windows, and Mac allowed a remote attacker to extract pixel values from a cross-origin page being iframe'd via a crafted HTML page.

Ссылки

EPSS

Процентиль: 67%
0.00552
Низкий

5.3 Medium

CVSS3

CVE ID

CVE-2017-5107

Дефекты

CWE-203

Связанные уязвимости

ubuntu логотип

CVE-2017-5107

CVSS3: 5.3
ubuntu
больше 8 лет назад

A timing attack in SVG rendering in Google Chrome prior to 60.0.3112.78 for Linux, Windows, and Mac allowed a remote attacker to extract pixel values from a cross-origin page being iframe'd via a crafted HTML page.

redhat логотип

CVE-2017-5107

CVSS3: 4.3
redhat
больше 8 лет назад

A timing attack in SVG rendering in Google Chrome prior to 60.0.3112.78 for Linux, Windows, and Mac allowed a remote attacker to extract pixel values from a cross-origin page being iframe'd via a crafted HTML page.

nvd логотип

CVE-2017-5107

CVSS3: 5.3
nvd
больше 8 лет назад

A timing attack in SVG rendering in Google Chrome prior to 60.0.3112.78 for Linux, Windows, and Mac allowed a remote attacker to extract pixel values from a cross-origin page being iframe'd via a crafted HTML page.

debian логотип

CVE-2017-5107

CVSS3: 5.3
debian
больше 8 лет назад

A timing attack in SVG rendering in Google Chrome prior to 60.0.3112.7 ...

EPSS

Процентиль: 67%
0.00552
Низкий

5.3 Medium

CVSS3

CVE ID

CVE-2017-5107

Дефекты

CWE-203