Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2017-5107

Опубликовано: 25 июл. 2017
Источник: redhat
CVSS3: 4.3

Описание

A timing attack in SVG rendering in Google Chrome prior to 60.0.3112.78 for Linux, Windows, and Mac allowed a remote attacker to extract pixel values from a cross-origin page being iframe'd via a crafted HTML page.

Ссылки на источники

Дополнительная информация

Статус:

Low
https://bugzilla.redhat.com/show_bug.cgi?id=1475210chromium-browser: user information leak via svg

4.3 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2017-5107

CVSS3: 5.3
ubuntu
больше 8 лет назад

A timing attack in SVG rendering in Google Chrome prior to 60.0.3112.78 for Linux, Windows, and Mac allowed a remote attacker to extract pixel values from a cross-origin page being iframe'd via a crafted HTML page.

nvd логотип

CVE-2017-5107

CVSS3: 5.3
nvd
больше 8 лет назад

A timing attack in SVG rendering in Google Chrome prior to 60.0.3112.78 for Linux, Windows, and Mac allowed a remote attacker to extract pixel values from a cross-origin page being iframe'd via a crafted HTML page.

debian логотип

CVE-2017-5107

CVSS3: 5.3
debian
больше 8 лет назад

A timing attack in SVG rendering in Google Chrome prior to 60.0.3112.7 ...

github логотип

GHSA-4679-hxq5-w394

CVSS3: 5.3
github
больше 3 лет назад

A timing attack in SVG rendering in Google Chrome prior to 60.0.3112.78 for Linux, Windows, and Mac allowed a remote attacker to extract pixel values from a cross-origin page being iframe'd via a crafted HTML page.

4.3 Medium

CVSS3

Уязвимость CVE-2017-5107