CVE-2017-15428

Summary

Insufficient data validation in V8 builtins string generator could lead to out of bounds read and write access in V8 in Google Chrome prior to 62.0.3202.94 and allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.

Affected Software

VendorProductVersion RangeStatus
GoogleChromeunspecified < 62.0.3202.94affected

Weaknesses

  • Insufficient data validation

ADP Enrichment

CVE Program Container

Additional References

References