High severity8.8NVD Advisory· Published Jan 9, 2019· Updated Jun 17, 2026
CVE-2017-15428
CVE-2017-15428
Description
Insufficient data validation in V8 builtins string generator could lead to out of bounds read and write access in V8 in Google Chrome prior to 62.0.3202.94 and allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.
Affected products
2Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.