CVE-2017-5022

4.3MEDIUM

Key Information:

Vendor: Google
Status: Google Chrome Prior To 56.0.2924.76 For Linux, Windows And Mac, And 56.0.2924.87 For Android
Vendor: CVE Published:; 17 February 2017

Summary

Blink in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, and 56.0.2924.87 for Android, failed to properly enforce unsafe-inline content security policy, which allowed a remote attacker to bypass content security policy via a crafted HTML page.

Affected Version(s)

Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, and 56.0.2924.87 for Android Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, and 56.0.2924.87 for Android