vulnerability
CentOS Linux: CVE-2017-5042: Important: chromium-browser security update (CESA-2017:0499)
Severity | CVSS | Published | Added | Modified |
---|---|---|---|---|
3 | (AV:A/AC:L/Au:N/C:P/I:N/A:N) | Apr 24, 2017 | Aug 28, 2019 | May 25, 2023 |
Severity
3
CVSS
(AV:A/AC:L/Au:N/C:P/I:N/A:N)
Published
Apr 24, 2017
Added
Aug 28, 2019
Modified
May 25, 2023
Description
Cast in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android sent cookies to sites discovered via SSDP, which allowed an attacker on the local network segment to initiate connections to arbitrary URLs and observe any plaintext cookies sent.
Solution(s)
centos-upgrade-chromium-browsercentos-upgrade-chromium-browser-debuginfo

NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.