CVE-2017-5053

🗓️ 27 Oct 2017 05:00:00Reported by ChromeType

Out-of-bounds read in V8 in Google Chrome prior to 57.0.2987.133 for Linux, Windows, and Mac, and 57.0.2987.132 for Android, allows remote code execution via crafted HTML page

Reporter	Title	Published	Views	Family All 57
FreeBSD	chromium -- multiple vulnerabilities	29 Mar 201700:00	–	freebsd
ArchLinux	[ASA-201703-19] chromium: arbitrary code execution	31 Mar 201700:00	–	archlinux
Circl	CVE-2017-5053	5 Apr 201717:26	–	circl
CNVD	Unspecified Vulnerability in Google Chrome and Chrome OS (CNVD-2017-06652)	25 Apr 201700:00	–	cnvd
CVE	CVE-2017-5053	27 Oct 201705:00	–	cve
Debian CVE	CVE-2017-5053	27 Oct 201705:00	–	debiancve
EUVD	EUVD-2017-14162	7 Oct 202500:30	–	euvd
Fedora	[SECURITY] Fedora 25 Update: qt5-qtwebengine-5.9.0-4.fc25	12 Jul 201703:27	–	fedora
Fedora	[SECURITY] Fedora 24 Update: chromium-native_client-58.0.3029.81-1.20170421gitc948e9b.fc24	3 Jun 201702:25	–	fedora
Fedora	[SECURITY] Fedora 26 Update: chromium-57.0.2987.133-1.fc26	14 Apr 201717:22	–	fedora

[
  {
    "product": "Google Chrome prior to 57.0.2987.133 for Linux, Windows and Mac, and 57.0.2987.132 for Android",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Google Chrome prior to 57.0.2987.133 for Linux, Windows and Mac, and 57.0.2987.132 for Android"
      }
    ]
  }
]

Source	Link
securityfocus	www.securityfocus.com/bid/97220
access	www.access.redhat.com/errata/RHSA-2017:0860
chromereleases	www.chromereleases.googleblog.com/2017/03/stable-channel-update-for-desktop_29.html
zerodayinitiative	www.zerodayinitiative.com/advisories/ZDI-17-462/
security	www.security.gentoo.org/glsa/201704-02
crbug	www.crbug.com/702058

04 Jan 2018 19:57Current

9.1High risk

Vulners AI Score9.1

EPSS0.01324