Local Extension Modification Vulnerability in Google Chrome for Multiple Platforms
CVE-2017-5081
3.3LOW
Key Information:
- Vendor
Google
- Vendor
- CVE Published:
- 27 October 2017
What is CVE-2017-5081?
A security flaw in Google Chrome prior to specific versions allowed local attackers with write access to modify extension files. This vulnerability arises from a lack of verification of an extension's locale folder, which could lead to unauthorized modification of extensions across multiple platforms including Mac, Windows, Linux, and Android. Users are advised to update to the latest versions to mitigate risks associated with this vulnerability.
Affected Version(s)
Google Chrome prior to 59.0.3071.86 for Mac, Windows and Linux, and 59.0.3071.92 for Android Google Chrome prior to 59.0.3071.86 for Mac, Windows and Linux, and 59.0.3071.92 for Android