Lucene search

K
ubuntucveUbuntu.comUB:CVE-2017-5061
HistoryOct 27, 2017 - 12:00 a.m.

CVE-2017-5061

2017-10-2700:00:00
ubuntu.com
ubuntu.com
18
google chrome
remote attacker
race condition
content spoofing
omnibox
html page
linux
windows
mac

CVSS2

2.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:N/I:P/A:N

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N

EPSS

0.006

Percentile

79.1%

A race condition in navigation in Google Chrome prior to 58.0.3029.81 for
Linux, Windows, and Mac allowed a remote attacker to spoof the contents of
the Omnibox (URL bar) via a crafted HTML page.

OSVersionArchitecturePackageVersionFilename
ubuntu17.10noarchchromium-browser< 58.0.3029.81-0ubuntu2.1350UNKNOWN
ubuntu18.04noarchchromium-browser< 58.0.3029.81-0ubuntu2.1350UNKNOWN
ubuntu18.10noarchchromium-browser< 58.0.3029.81-0ubuntu2.1350UNKNOWN
ubuntu14.04noarchchromium-browser< 58.0.3029.81-0ubuntu0.14.04.1172UNKNOWN
ubuntu16.04noarchchromium-browser< 58.0.3029.81-0ubuntu0.16.04.1277UNKNOWN
ubuntu16.10noarchchromium-browser< 58.0.3029.81-0ubuntu0.16.10.1345UNKNOWN
ubuntu17.04noarchchromium-browser< 58.0.3029.81-0ubuntu2.17.04.1350UNKNOWN

CVSS2

2.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:N/I:P/A:N

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N

EPSS

0.006

Percentile

79.1%