VYPR
High severity8.8NVD Advisory· Published Jan 9, 2019· Updated Jun 17, 2026

CVE-2017-15428

CVE-2017-15428

Description

Insufficient data validation in V8 builtins string generator could lead to out of bounds read and write access in V8 in Google Chrome prior to 62.0.3202.94 and allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.

Affected products

2
  • Google/Chromellm-fuzzy2 versions
    <62.0.3202.94+ 1 more
    • (no CPE)range: <62.0.3202.94
    • (no CPE)range: unspecified

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.