| Max CVSS | 6.8 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2017-5120 | 4.3 |
Inappropriate use of www mismatch redirects in browser navigation in Google Chrome prior to 61.0.3163.79 for Mac, Windows, and Linux, and 61.0.3163.81 for Android, allowed a remote attacker to potentially downgrade HTTPS requests to HTTP via a crafte
|
06-04-2022 - 18:26 | 27-10-2017 - 05:29 | |
| CVE-2017-5111 | 6.8 |
A use after free in PDFium in Google Chrome prior to 61.0.3163.79 for Linux, Windows, and Mac allowed a remote attacker to potentially exploit memory corruption via a crafted PDF file.
|
06-04-2022 - 18:25 | 27-10-2017 - 05:29 | |
| CVE-2017-5113 | 6.8 |
Math overflow in Skia in Google Chrome prior to 61.0.3163.79 for Mac, Windows, and Linux, and 61.0.3163.81 for Android, allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
06-04-2022 - 18:22 | 27-10-2017 - 05:29 | |
| CVE-2017-5118 | 4.3 |
Blink in Google Chrome prior to 61.0.3163.79 for Mac, Windows, and Linux, and 61.0.3163.81 for Android, failed to correctly propagate CSP restrictions to javascript scheme pages, which allowed a remote attacker to bypass content security policy via a
|
06-04-2022 - 18:21 | 27-10-2017 - 05:29 | |
| CVE-2017-5116 | 6.8 |
Type confusion in V8 in Google Chrome prior to 61.0.3163.79 for Mac, Windows, and Linux, and 61.0.3163.81 for Android, allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.
|
06-04-2022 - 18:20 | 27-10-2017 - 05:29 | |
| CVE-2017-5121 | 6.8 |
Inappropriate use of JIT optimisation in V8 in Google Chrome prior to 61.0.3163.100 for Linux, Windows, and Mac allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page, related to the escape analysis phase.
|
06-04-2022 - 18:18 | 27-10-2017 - 05:29 | |
| CVE-2017-5114 | 6.8 |
Inappropriate use of partition alloc in PDFium in Google Chrome prior to 61.0.3163.79 for Linux, Windows, and Mac, and 61.0.3163.81 for Android, allowed a remote attacker to potentially exploit memory corruption via a crafted PDF file.
|
06-04-2022 - 18:16 | 27-10-2017 - 05:29 | |
| CVE-2017-5115 | 6.8 |
Type confusion in V8 in Google Chrome prior to 61.0.3163.79 for Windows allowed a remote attacker to potentially exploit object corruption via a crafted HTML page.
|
31-12-2017 - 02:29 | 27-10-2017 - 05:29 | |
| CVE-2017-5112 | 6.8 |
Heap buffer overflow in WebGL in Google Chrome prior to 61.0.3163.79 for Windows allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.
|
31-12-2017 - 02:29 | 27-10-2017 - 05:29 | |
| CVE-2017-5119 | 4.3 |
Use of an uninitialized value in Skia in Google Chrome prior to 61.0.3163.79 for Mac, Windows, and Linux, and 61.0.3163.81 for Android, allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page.
|
31-12-2017 - 02:29 | 27-10-2017 - 05:29 | |
| CVE-2017-5117 | 4.3 |
Use of an uninitialized value in Skia in Google Chrome prior to 61.0.3163.79 for Linux and Windows allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page.
|
31-12-2017 - 02:29 | 27-10-2017 - 05:29 | |
| CVE-2017-5122 | 6.8 |
Inappropriate use of table size handling in V8 in Google Chrome prior to 61.0.3163.100 for Windows allowed a remote attacker to trigger out-of-bounds access via a crafted HTML page.
|
09-12-2017 - 02:29 | 27-10-2017 - 05:29 |