CVE-2017-5106

2017-10-2705:00:00

Chrome

www.cve.org

6.6 Medium

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

78.5%

JSON

Insufficient Policy Enforcement in Omnibox in Google Chrome prior to 60.0.3112.78 for Mac, Windows, Linux, and Android allowed a remote attacker to perform domain spoofing via IDN homographs in a crafted domain name.

CNA Affected

[
  {
    "product": "Google Chrome prior to 60.0.3112.78 for Mac, Windows, Linux and Android",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Google Chrome prior to 60.0.3112.78 for Mac, Windows, Linux and Android"
      }
    ]
  }
]