VYPR
Medium severity6.5NVD Advisory· Published Oct 27, 2017· Updated Jun 17, 2026

CVE-2017-5090

CVE-2017-5090

Description

Insufficient Policy Enforcement in Omnibox in Google Chrome prior to 59.0.3071.115 for Mac allowed a remote attacker to perform domain spoofing via a crafted domain name containing a U+0620 character, aka Apple rdar problem 32458012.

Affected products

2
  • Google/Chrome2 versions
    cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*range: <59.0.3071.115
    • (no CPE)range: <59.0.3071.115

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.