Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2018-17457

Опубликовано: 09 янв. 2019
Источник: ubuntu
Приоритет: low
EPSS Низкий
CVSS2: 6.8
CVSS3: 8.8

Описание

An object lifecycle issue in Blink could lead to a use after free in WebAudio in Google Chrome prior to 69.0.3497.81 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.

РелизСтатусПримечание
bionic

not-affected

75.0.3770.90-0ubuntu0.18.04.1
cosmic

not-affected

75.0.3770.90-0ubuntu0.18.10.1
devel

not-affected

75.0.3770.80-0ubuntu1~snap2
disco

not-affected

75.0.3770.90-0ubuntu0.19.04.1
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was ignored [no longer updated]]
precise/esm

DNE

trusty

ignored

end of standard support
trusty/esm

DNE

trusty was ignored [no longer updated]
upstream

released

xenial

not-affected

74.0.3729.169-0ubuntu0.16.04.1

Показывать по

Ссылки на источники

EPSS

Процентиль: 73%
0.0077
Низкий

6.8 Medium

CVSS2

8.8 High

CVSS3

Связанные уязвимости

nvd логотип

CVE-2018-17457

CVSS3: 8.8
nvd
около 7 лет назад

An object lifecycle issue in Blink could lead to a use after free in WebAudio in Google Chrome prior to 69.0.3497.81 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.

debian логотип

CVE-2018-17457

CVSS3: 8.8
debian
около 7 лет назад

An object lifecycle issue in Blink could lead to a use after free in W ...

github логотип

GHSA-57hr-vqm5-57qg

CVSS3: 8.8
github
больше 3 лет назад

An object lifecycle issue in Blink could lead to a use after free in WebAudio in Google Chrome prior to 69.0.3497.81 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.

EPSS

Процентиль: 73%
0.0077
Низкий

6.8 Medium

CVSS2

8.8 High

CVSS3