Remote Command Execution Vulnerability in Chrome OS by Google
CVE-2016-5179

9.8CRITICAL

Key Information:

Vendor
Google
Status
Chrome Os
Vendor
CVE Published:
7 March 2018

Summary

A vulnerability exists in Google Chrome OS versions prior to 53.0.2785.144 that allows remote attackers to execute arbitrary commands at the boot phase. This issue can lead to unauthorized access and control over the affected device, posing significant risks to user data and system integrity. Users are advised to update to the latest version to mitigate these risks.

References

https://bugs.chromium.org/p/chromium/issues/detail?id=649039
x_refsource_CONFIRM
http://www.securityfocus.com/bid/93260
vdb-entryx_refsource_BID
https://chromereleases.googleblog.com/2016/09/stable-chan...
x_refsource_CONFIRM

CVSS V3.1

Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.