Endpoint Vulnerability

Security Vulnerability CVE-2017-5008 for Google Chrome

Description

Blink in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, and 56.0.2924.87 for Android, allowed attacker controlled JavaScript to be run during the invocation of a private script method, which allowed a remote attacker to inject arbitrary scripts or HTML (UXSS) via a crafted HTML page.

Affected Products

Google Chrome

References

CVE-2017-5008,