Uninitialized Memory Vulnerability in Google Chrome
CVE-2017-15418

4.3MEDIUM

Key Information:

Vendor
Google
Status
Google Chrome Prior To 63.0.3239.84 Unknown
Vendor
CVE Published:
28 August 2018

Summary

An uninitialized memory vulnerability in Google Chrome prior to version 63.0.3239.84 could allow an attacker to exploit this weakness via a specially crafted HTML page. This could lead to the unintended leakage of sensitive information from the process memory, exposing data to remote entities. It emphasizes the importance of keeping your browser updated to protect against such vulnerabilities.

Affected Version(s)

Google Chrome prior to 63.0.3239.84 unknown Google Chrome prior to 63.0.3239.84 unknown

References

https://access.redhat.com/errata/RHSA-2017:3401
vendor-advisoryx_refsource_REDHAT
https://crbug.com/765858
x_refsource_MISC
https://security.gentoo.org/glsa/201801-03
vendor-advisoryx_refsource_GENTOO

CVSS V3.1

Score:
4.3
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.