CVE-2017-5113
- EPSS 1.3%
- Veröffentlicht 27.10.2017 05:29:02
- Zuletzt bearbeitet 13.05.2026 00:24:29
Math overflow in Skia in Google Chrome prior to 61.0.3163.79 for Mac, Windows, and Linux, and 61.0.3163.81 for Android, allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2017-5114
- EPSS 1.32%
- Veröffentlicht 27.10.2017 05:29:02
- Zuletzt bearbeitet 13.05.2026 00:24:29
Inappropriate use of partition alloc in PDFium in Google Chrome prior to 61.0.3163.79 for Linux, Windows, and Mac, and 61.0.3163.81 for Android, allowed a remote attacker to potentially exploit memory corruption via a crafted PDF file.
CVE-2017-5115
- EPSS 26.33%
- Veröffentlicht 27.10.2017 05:29:02
- Zuletzt bearbeitet 13.05.2026 00:24:29
Type confusion in V8 in Google Chrome prior to 61.0.3163.79 for Windows allowed a remote attacker to potentially exploit object corruption via a crafted HTML page.
CVE-2017-5116
- EPSS 12.67%
- Veröffentlicht 27.10.2017 05:29:02
- Zuletzt bearbeitet 13.05.2026 00:24:29
Type confusion in V8 in Google Chrome prior to 61.0.3163.79 for Mac, Windows, and Linux, and 61.0.3163.81 for Android, allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.
CVE-2017-5117
- EPSS 1.71%
- Veröffentlicht 27.10.2017 05:29:02
- Zuletzt bearbeitet 13.05.2026 00:24:29
Use of an uninitialized value in Skia in Google Chrome prior to 61.0.3163.79 for Linux and Windows allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page.
CVE-2017-5118
- EPSS 1.13%
- Veröffentlicht 27.10.2017 05:29:02
- Zuletzt bearbeitet 13.05.2026 00:24:29
Blink in Google Chrome prior to 61.0.3163.79 for Mac, Windows, and Linux, and 61.0.3163.81 for Android, failed to correctly propagate CSP restrictions to javascript scheme pages, which allowed a remote attacker to bypass content security policy via a...
CVE-2017-5119
- EPSS 1.76%
- Veröffentlicht 27.10.2017 05:29:02
- Zuletzt bearbeitet 13.05.2026 00:24:29
Use of an uninitialized value in Skia in Google Chrome prior to 61.0.3163.79 for Mac, Windows, and Linux, and 61.0.3163.81 for Android, allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page.
CVE-2017-5120
- EPSS 1.13%
- Veröffentlicht 27.10.2017 05:29:02
- Zuletzt bearbeitet 13.05.2026 00:24:29
Inappropriate use of www mismatch redirects in browser navigation in Google Chrome prior to 61.0.3163.79 for Mac, Windows, and Linux, and 61.0.3163.81 for Android, allowed a remote attacker to potentially downgrade HTTPS requests to HTTP via a crafte...
CVE-2017-5121
- EPSS 5.29%
- Veröffentlicht 27.10.2017 05:29:02
- Zuletzt bearbeitet 13.05.2026 00:24:29
Inappropriate use of JIT optimisation in V8 in Google Chrome prior to 61.0.3163.100 for Linux, Windows, and Mac allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page, related to the escape analysis phase.
CVE-2017-5122
- EPSS 1.33%
- Veröffentlicht 27.10.2017 05:29:02
- Zuletzt bearbeitet 13.05.2026 00:24:29
Inappropriate use of table size handling in V8 in Google Chrome prior to 61.0.3163.100 for Windows allowed a remote attacker to trigger out-of-bounds access via a crafted HTML page.