VYPR
High severity8.8NVD Advisory· Published Jan 9, 2019· Updated Jun 17, 2026

CVE-2018-17457

CVE-2018-17457

Description

An object lifecycle issue in Blink could lead to a use after free in WebAudio in Google Chrome prior to 69.0.3497.81 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.

Affected products

2
  • Google/Chromellm-fuzzy2 versions
    <69.0.3497.81+ 1 more
    • (no CPE)range: <69.0.3497.81
    • (no CPE)range: unspecified

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.