Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistChromeCVELIST:CVE-2017-15402
HistoryJan 09, 2019 - 7:00 p.m.

CVE-2017-15402

2019-01-0919:00:00
Chrome
www.cve.org
2

AI Score

9.1

Confidence

High

EPSS

0.001

Percentile

48.1%

JSON

Using an ID that can be controlled by a compromised renderer which allows any frame to overwrite the page_state of any other frame in the same process in Navigation in Google Chrome on Chrome OS prior to 62.0.3202.74 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.

CNA Affected

[
  {
    "product": "Chrome",
    "vendor": "Google",
    "versions": [
      {
        "lessThan": "62.0.3202.74",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

Related

cve 1
prion 1
ubuntucve 1
nvd 1
chrome 1
cve
cve
CVE-2017-15402
2019-01-09 19:29:00
prion
prion
Design/Logic Flaw
2019-01-09 19:29:00
ubuntucve
ubuntucve
CVE-2017-15402
2019-01-09 00:00:00
nvd
nvd
CVE-2017-15402
2019-01-09 19:29:00
chrome
chrome
Stable Channel Update for Chrome OS
2017-10-27 00:00:00

AI Score

9.1

Confidence

High

EPSS

0.001

Percentile

48.1%

JSON
Related for CVELIST:CVE-2017-15402
cve1prion1ubuntucve1nvd1chrome1