VYPR
Medium severity4.3NVD Advisory· Published Oct 27, 2017· Updated Jun 17, 2026

CVE-2017-5118

CVE-2017-5118

Description

Blink in Google Chrome prior to 61.0.3163.79 for Mac, Windows, and Linux, and 61.0.3163.81 for Android, failed to correctly propagate CSP restrictions to javascript scheme pages, which allowed a remote attacker to bypass content security policy via a crafted HTML page.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

10

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.