Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2017-5042

Опубликовано: 24 апр. 2017
Источник: ubuntu
Приоритет: medium
CVSS2: 3.3
CVSS3: 5.7

Описание

Cast in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android sent cookies to sites discovered via SSDP, which allowed an attacker on the local network segment to initiate connections to arbitrary URLs and observe any plaintext cookies sent.

РелизСтатусПримечание
devel

released

57.0.2987.98-0ubuntu1.1348
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was released [58.0.3029.81-0ubuntu0.14.04.1172]]
precise

ignored

trusty

released

58.0.3029.81-0ubuntu0.14.04.1172
trusty/esm

DNE

trusty was released [58.0.3029.81-0ubuntu0.14.04.1172]
upstream

released

57.0.2987.98
vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

xenial

released

57.0.2987.98-0ubuntu0.16.04.1276
yakkety

released

57.0.2987.98-0ubuntu0.16.10.1344

Показывать по

РелизСтатусПримечание
devel

not-affected

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was not-affected]
esm-infra/xenial

not-affected

precise

DNE

trusty

not-affected

trusty/esm

DNE

trusty was not-affected
upstream

not-affected

vivid/stable-phone-overlay

not-affected

vivid/ubuntu-core

DNE

xenial

not-affected

Показывать по

Ссылки на источники

3.3 Low

CVSS2

5.7 Medium

CVSS3

Связанные уязвимости

redhat логотип

CVE-2017-5042

CVSS3: 6.5
redhat
почти 9 лет назад

Cast in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android sent cookies to sites discovered via SSDP, which allowed an attacker on the local network segment to initiate connections to arbitrary URLs and observe any plaintext cookies sent.

nvd логотип

CVE-2017-5042

CVSS3: 5.7
nvd
почти 9 лет назад

Cast in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android sent cookies to sites discovered via SSDP, which allowed an attacker on the local network segment to initiate connections to arbitrary URLs and observe any plaintext cookies sent.

debian логотип

CVE-2017-5042

CVSS3: 5.7
debian
почти 9 лет назад

Cast in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linu ...

github логотип

GHSA-9wr7-mfw6-pfpw

CVSS3: 5.7
github
почти 4 года назад

Cast in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android sent cookies to sites discovered via SSDP, which allowed an attacker on the local network segment to initiate connections to arbitrary URLs and observe any plaintext cookies sent.

3.3 Low

CVSS2

5.7 Medium

CVSS3