CVE-2016-5201

🗓️ 19 Jan 2017 05:43:00Reported by ChromeType

A privateClass leak in Google Chrome prior to 54.0.2840.100 allowed remote JavaScript code access

Reporter	Title	Published	Views	Family All 55
FreeBSD	chromium -- multiple vulnerabilities	9 Nov 201600:00	–	freebsd
ArchLinux	[ASA-201702-2] qt5-webengine: multiple issues	2 Feb 201700:00	–	archlinux
CNVD	Google Chrome Arbitrary Code Execution Vulnerability (CNVD-2016-11162)	11 Nov 201600:00	–	cnvd
Cvelist	CVE-2016-5201	19 Jan 201705:43	–	cvelist
Debian	[SECURITY] [DSA 3731-1] chromium-browser security update	11 Dec 201620:59	–	debian
Debian	[SECURITY] [DSA 3731-1] chromium-browser security update	11 Dec 201620:59	–	debian
Debian CVE	CVE-2016-5201	19 Jan 201705:43	–	debiancve
Tenable Nessus	Debian DSA-3731-1 : chromium-browser - security update	12 Dec 201600:00	–	nessus
Tenable Nessus	Fedora 25 : chromium (2016-a815b7bf5d)	16 Dec 201600:00	–	nessus
Tenable Nessus	Fedora 24 : chromium (2016-e0e1cb2b2b)	16 Dec 201600:00	–	nessus

NVD

Node

google chromeRange≤54.0.2840.87

[
  {
    "product": "Google Chrome prior to 54.0.2840.100 for Linux, and 54.0.2840.99 for Windows, and 54.0.2840.98 for Mac",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Google Chrome prior to 54.0.2840.100 for Linux, and 54.0.2840.99 for Windows, and 54.0.2840.98 for Mac"
      }
    ]
  }
]

Source	Link
security	www.security.gentoo.org/glsa/201611-16
chromereleases	www.chromereleases.googleblog.com/2016/11/stable-channel-update-for-desktop_9.html
securitytracker	www.securitytracker.com/id/1037273
securityfocus	www.securityfocus.com/bid/94196
crbug	www.crbug.com/660678
rhn	www.rhn.redhat.com/errata/RHSA-2016-2718.html

13 May 2026 00:24Current

6.7Medium risk

Vulners AI Score6.7

CVSS 24.3

CVSS 36.5

EPSS0.0052

CWE-200