CVE-2017-15417

Summary

Inappropriate implementation in Skia canvas composite operations in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to leak cross-origin data via a crafted HTML page.

Affected Software

VendorProductVersion RangeStatus
n/aGoogle Chrome prior to 63.0.3239.84 unknownGoogle Chrome prior to 63.0.3239.84 unknownaffected

Weaknesses

  • Sidechannel information leakage

ADP Enrichment

CVE Program Container

Additional References

References