vulnerability

CentOS Linux: CVE-2017-5042: Important: chromium-browser security update (CESA-2017:0499)

Severity
3
CVSS
(AV:A/AC:L/Au:N/C:P/I:N/A:N)
Published
Apr 24, 2017
Added
Aug 28, 2019
Modified
May 25, 2023

Description

Cast in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android sent cookies to sites discovered via SSDP, which allowed an attacker on the local network segment to initiate connections to arbitrary URLs and observe any plaintext cookies sent.

Solution(s)

centos-upgrade-chromium-browsercentos-upgrade-chromium-browser-debuginfo
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.