CVE-2017-15406: Buffer Overflow

Q: What is the severity of CVE-2017-15406?

CVE-2017-15406 is classified as a high severity vulnerability due to its potential for exploitation through crafted HTML pages.

Q: How do I fix CVE-2017-15406?

To fix CVE-2017-15406, update your Google Chrome browser to version 62.0.3202.75 or later.

Q: What type of vulnerability is CVE-2017-15406?

CVE-2017-15406 is a stack buffer overflow vulnerability in the V8 engine of Google Chrome.

Q: What could an attacker achieve by exploiting CVE-2017-15406?

An attacker could perform an out of bounds memory read, potentially compromising the integrity of the user's system.

Q: Which software versions are affected by CVE-2017-15406?

CVE-2017-15406 affects Google Chrome versions prior to 62.0.3202.75.

Published Oct 26, 2017

Updated

A stack buffer overflow in V8 in Google Chrome prior to 62.0.3202.75 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.

Affected Software

2 affected componentsFixes available

Google Chrome<62.0.3202.75

62.0.3202.75

Google Chrome<62.0.3202.75

Remediation

Patch Available

https://crbug.com/770450

Event History

Oct 26, 2017

CVE Published

12:00 AM

Aug 28, 2018

CVE Published

via MITRE·08:00 PM

Data Sourced

via MITRE·08:00 PM

DescriptionWeakness

Parent advisories

This vulnerability appears in the following advisories.

4161252286053538834

Peer vulnerabilities

Found alongside the following vulnerabilities.

CVE-2017-15396

Frequently Asked Questions

What is the severity of CVE-2017-15406?

CVE-2017-15406 is classified as a high severity vulnerability due to its potential for exploitation through crafted HTML pages.

How do I fix CVE-2017-15406?