High severity8.8NVD Advisory· Published Oct 27, 2017· Updated Jun 17, 2026
CVE-2017-5116
CVE-2017-5116
Description
Type confusion in V8 in Google Chrome prior to 61.0.3163.79 for Mac, Windows, and Linux, and 61.0.3163.81 for Android, allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
9- cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
- osv-coords2 versionspkg:rpm/opensuse/chromium&distro=openSUSE%20Tumbleweedpkg:rpm/suse/chromium&distro=SUSE%20Package%20Hub%2012%20SP2
< 93.0.4577.82-1.1+ 1 more
- (no CPE)range: < 93.0.4577.82-1.1
- (no CPE)range: < 61.0.3163.79-29.1
Patches
Vulnerability mechanics
References
8- www.debian.org/security/2017/dsa-3985nvd
- www.securityfocus.com/bid/100610nvd
- www.securitytracker.com/id/1039291nvd
- access.redhat.com/errata/RHSA-2017:2676nvd
- chromereleases.googleblog.com/2017/09/stable-channel-update-for-desktop.htmlnvd
- crbug.com/759624nvd
- security.gentoo.org/glsa/201709-15nvd
- security.googleblog.com/2018/01/android-security-ecosystem-investments.htmlnvd
News mentions
0No linked articles in our index yet.