← back
CVE-2017-5081

CVE-2017-5081

EPSS 0.3%
Lack of verification of an extension's locale folder in Google Chrome prior to 59.0.3071.86 for Mac, Windows, and Linux, and 59.0.3071.92 for Android, allowed an attacker with local write access to modify extensions by modifying extension files.
Affected products
n/a · Google Chrome prior to 59.0.3071.86 for Mac, Windows and Linux, and 59.0.3071.92 for Android

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://access.redhat.com/errata/RHSA-2017:1399https://chromereleases.googleblog.com/2017/06/stable-channel-update-for-desktop.htmlhttps://crbug.com/672008https://security.gentoo.org/glsa/201706-20http://www.securityfocus.com/bid/98861http://www.securitytracker.com/id/1038622