EPSS
Percentile
76.4%
A timing attack in SVG rendering in Google Chrome prior to 60.0.3112.78 for Linux, Windows, and Mac allowed a remote attacker to extract pixel values from a cross-origin page being iframe’d via a crafted HTML page.
bugzilla.redhat.com/show_bug.cgi?id=1475210
chromereleases.googleblog.com/2017/07/stable-channel-update-for-desktop.html