Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2017-15428

Опубликовано: 09 янв. 2019
Источник: ubuntu
Приоритет: low
CVSS2: 6.8
CVSS3: 8.8

Описание

Insufficient data validation in V8 builtins string generator could lead to out of bounds read and write access in V8 in Google Chrome prior to 62.0.3202.94 and allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.

РелизСтатусПримечание
bionic

not-affected

74.0.3729.169-0ubuntu0.16.04.1
cosmic

not-affected

74.0.3729.169-0ubuntu0.16.04.1
devel

not-affected

74.0.3729.169-0ubuntu0.16.04.1
disco

not-affected

74.0.3729.169-0ubuntu0.16.04.1
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was ignored [no longer updated]]
precise/esm

DNE

trusty

ignored

end of standard support
trusty/esm

DNE

trusty was ignored [no longer updated]
upstream

released

63.0.3239.84-1
xenial

not-affected

74.0.3729.169-0ubuntu0.16.04.1

Показывать по

Ссылки на источники

6.8 Medium

CVSS2

8.8 High

CVSS3

Связанные уязвимости

nvd логотип

CVE-2017-15428

CVSS3: 8.8
nvd
около 7 лет назад

Insufficient data validation in V8 builtins string generator could lead to out of bounds read and write access in V8 in Google Chrome prior to 62.0.3202.94 and allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.

debian логотип

CVE-2017-15428

CVSS3: 8.8
debian
около 7 лет назад

Insufficient data validation in V8 builtins string generator could lea ...

github логотип

GHSA-6723-6vgh-jm2c

CVSS3: 8.8
github
больше 3 лет назад

Insufficient data validation in V8 builtins string generator could lead to out of bounds read and write access in V8 in Google Chrome prior to 62.0.3202.94 and allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.

6.8 Medium

CVSS2

8.8 High

CVSS3