V8 in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android had insufficient policy enforcement, which allowed a remote attacker to spoof the location object via a crafted HTML page, related to Blink information disclosure.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: Chrome

Published: 2017-04-24T23:00:00

Updated: 2024-08-05T14:47:44.392Z

Reserved: 2017-01-02T00:00:00

Link: CVE-2017-5046

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2017-04-24T23:59:00.720

Modified: 2024-11-21T03:26:56.093

Link: CVE-2017-5046

cve-icon Redhat

Severity : Moderate

Publid Date: 2017-03-09T00:00:00Z

Links: CVE-2017-5046 - Bugzilla