cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2017-5111,https://securityvulnerability.io/vulnerability/CVE-2017-5111,,"A use after free in PDFium in Google Chrome prior to 61.0.3163.79 for Linux, Windows, and Mac allowed a remote attacker to potentially exploit memory corruption via a crafted PDF file.",Google,"Google Chrome Prior To 61.0.3163.79 For Linux, Windows And Mac",8.8,HIGH,0.01575000025331974,false,false,false,false,,false,false,2017-10-27T05:00:00.000Z,0
CVE-2017-5112,https://securityvulnerability.io/vulnerability/CVE-2017-5112,,Heap buffer overflow in WebGL in Google Chrome prior to 61.0.3163.79 for Windows allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.,Google,Google Chrome Prior To 61.0.3163.79 For Windows,8.8,HIGH,0.2752400040626526,false,false,false,false,,false,false,2017-10-27T05:00:00.000Z,0
CVE-2017-5114,https://securityvulnerability.io/vulnerability/CVE-2017-5114,,"Inappropriate use of partition alloc in PDFium in Google Chrome prior to 61.0.3163.79 for Linux, Windows, and Mac, and 61.0.3163.81 for Android, allowed a remote attacker to potentially exploit memory corruption via a crafted PDF file.",Google,"Google Chrome Prior To 61.0.3163.79 For Linux, Windows And Mac, And 61.0.3163.81 For Android",8.8,HIGH,0.014829999767243862,false,false,false,false,,false,false,2017-10-27T05:00:00.000Z,0
CVE-2017-5115,https://securityvulnerability.io/vulnerability/CVE-2017-5115,,Type confusion in V8 in Google Chrome prior to 61.0.3163.79 for Windows allowed a remote attacker to potentially exploit object corruption via a crafted HTML page.,Google,Google Chrome Prior To 61.0.3163.79 For Windows,8.8,HIGH,0.016019999980926514,false,false,false,false,,false,false,2017-10-27T05:00:00.000Z,0
CVE-2017-5117,https://securityvulnerability.io/vulnerability/CVE-2017-5117,,Use of an uninitialized value in Skia in Google Chrome prior to 61.0.3163.79 for Linux and Windows allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page.,Google,Google Chrome Prior To 61.0.3163.79 For Linux And Windows,6.5,MEDIUM,0.00863999966531992,false,false,false,false,,false,false,2017-10-27T05:00:00.000Z,0
CVE-2017-5118,https://securityvulnerability.io/vulnerability/CVE-2017-5118,,"Blink in Google Chrome prior to 61.0.3163.79 for Mac, Windows, and Linux, and 61.0.3163.81 for Android, failed to correctly propagate CSP restrictions to javascript scheme pages, which allowed a remote attacker to bypass content security policy via a crafted HTML page.",Google,"Google Chrome Prior To 61.0.3163.79 For Mac, Windows And Linux, And 61.0.3163.81 For Android",4.3,MEDIUM,0.006560000125318766,false,false,false,false,,false,false,2017-10-27T05:00:00.000Z,0
CVE-2017-5119,https://securityvulnerability.io/vulnerability/CVE-2017-5119,,"Use of an uninitialized value in Skia in Google Chrome prior to 61.0.3163.79 for Mac, Windows, and Linux, and 61.0.3163.81 for Android, allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page.",Google,"Google Chrome Prior To 61.0.3163.79 For Mac, Windows And Linux, And 61.0.3163.81 For Android",4.3,MEDIUM,0.01271000038832426,false,false,false,false,,false,false,2017-10-27T05:00:00.000Z,0
CVE-2017-5120,https://securityvulnerability.io/vulnerability/CVE-2017-5120,,"Inappropriate use of www mismatch redirects in browser navigation in Google Chrome prior to 61.0.3163.79 for Mac, Windows, and Linux, and 61.0.3163.81 for Android, allowed a remote attacker to potentially downgrade HTTPS requests to HTTP via a crafted HTML page. In other words, Chrome could transmit cleartext even though the user had entered an https URL, because of a misdesigned workaround for cases where the domain name in a URL almost matches the domain name in an X.509 server certificate (but differs in the initial ""www."" substring).",Google,"Google Chrome Prior To 61.0.3163.79 For Mac, Windows And Linux, And 61.0.3163.81 For Android",6.5,MEDIUM,0.006909999996423721,false,false,false,false,,false,false,2017-10-27T05:00:00.000Z,0
CVE-2017-5116,https://securityvulnerability.io/vulnerability/CVE-2017-5116,,"Type confusion in V8 in Google Chrome prior to 61.0.3163.79 for Mac, Windows, and Linux, and 61.0.3163.81 for Android, allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.",Google,"Google Chrome Prior To 61.0.3163.79 For Mac, Windows And Linux, And 61.0.3163.81 For Android",8.8,HIGH,0.1429699957370758,false,false,false,false,,false,false,2017-10-27T05:00:00.000Z,0
CVE-2017-5113,https://securityvulnerability.io/vulnerability/CVE-2017-5113,,"Math overflow in Skia in Google Chrome prior to 61.0.3163.79 for Mac, Windows, and Linux, and 61.0.3163.81 for Android, allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.",Google,"Google Chrome Prior To 61.0.3163.79 For Mac, Windows And Linux, And 61.0.3163.81 For Android",8.8,HIGH,0.020409999415278435,false,false,false,false,,false,false,2017-10-27T05:00:00.000Z,0