cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2017-15386,https://securityvulnerability.io/vulnerability/CVE-2017-15386,,Incorrect implementation in Blink in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.,Google,Google Chrome Prior To 62.0.3202.62,6.5,MEDIUM,0.005929999984800816,false,false,false,false,,false,false,2018-02-07T23:00:00.000Z,0
CVE-2017-15387,https://securityvulnerability.io/vulnerability/CVE-2017-15387,,Insufficient enforcement of Content Security Policy in Blink in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to open javascript: URL windows when they should not be allowed to via a crafted HTML page.,Google,Google Chrome Prior To 62.0.3202.62,8.8,HIGH,0.01923999935388565,false,false,false,false,,false,false,2018-02-07T23:00:00.000Z,0
CVE-2017-15388,https://securityvulnerability.io/vulnerability/CVE-2017-15388,,Iteration through non-finite points in Skia in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.,Google,Google Chrome Prior To 62.0.3202.62,8.8,HIGH,0.015519999898970127,false,false,false,false,,false,false,2018-02-07T23:00:00.000Z,0
CVE-2017-15389,https://securityvulnerability.io/vulnerability/CVE-2017-15389,,An insufficient watchdog timer in navigation in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.,Google,Google Chrome Prior To 62.0.3202.62,6.5,MEDIUM,0.005929999984800816,false,false,false,false,,false,false,2018-02-07T23:00:00.000Z,0
CVE-2017-15390,https://securityvulnerability.io/vulnerability/CVE-2017-15390,,Insufficient Policy Enforcement in Omnibox in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to perform domain spoofing via IDN homographs in a crafted domain name.,Google,Google Chrome Prior To 62.0.3202.62,6.5,MEDIUM,0.005929999984800816,false,false,false,false,,false,false,2018-02-07T23:00:00.000Z,0
CVE-2017-15391,https://securityvulnerability.io/vulnerability/CVE-2017-15391,,Insufficient Policy Enforcement in Extensions in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to access Extension pages without authorisation via a crafted HTML page.,Google,Google Chrome Prior To 62.0.3202.62,6.5,MEDIUM,0.00749000022187829,false,false,false,false,,false,false,2018-02-07T23:00:00.000Z,0
CVE-2017-15392,https://securityvulnerability.io/vulnerability/CVE-2017-15392,,"Insufficient data validation in V8 in Google Chrome prior to 62.0.3202.62 allowed an attacker who can write to the Windows Registry to potentially exploit heap corruption via a crafted Windows Registry entry, related to PlatformIntegration.",Google,Google Chrome Prior To 62.0.3202.62,4.3,MEDIUM,0.0015200000489130616,false,false,false,false,,false,false,2018-02-07T23:00:00.000Z,0
CVE-2017-15393,https://securityvulnerability.io/vulnerability/CVE-2017-15393,,"Insufficient Policy Enforcement in Devtools remote debugging in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to obtain access to remote debugging functionality via a crafted HTML page, aka a Referer leak.",Google,Google Chrome Prior To 62.0.3202.62,8.8,HIGH,0.03500000014901161,false,false,false,false,,false,false,2018-02-07T23:00:00.000Z,0
CVE-2017-15394,https://securityvulnerability.io/vulnerability/CVE-2017-15394,,Insufficient Policy Enforcement in Extensions in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to perform domain spoofing in permission dialogs via IDN homographs in a crafted Chrome Extension.,Google,Google Chrome Prior To 62.0.3202.62,6.5,MEDIUM,0.005929999984800816,false,false,false,true,true,false,false,2018-02-07T23:00:00.000Z,0
CVE-2017-15395,https://securityvulnerability.io/vulnerability/CVE-2017-15395,,"A use after free in Blink in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page, aka an ImageCapture NULL pointer dereference.",Google,Google Chrome Prior To 62.0.3202.62,6.5,MEDIUM,0.028060000389814377,false,false,false,false,,false,false,2018-02-07T23:00:00.000Z,0
CVE-2017-5124,https://securityvulnerability.io/vulnerability/CVE-2017-5124,,Incorrect application of sandboxing in Blink in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to inject arbitrary scripts or HTML (UXSS) via a crafted MHTML page.,Google,Google Chrome Prior To 62.0.3202.62,6.1,MEDIUM,0.00482999999076128,false,false,false,true,true,false,false,2018-02-07T23:00:00.000Z,0
CVE-2017-5125,https://securityvulnerability.io/vulnerability/CVE-2017-5125,,Heap buffer overflow in Skia in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.,Google,Google Chrome Prior To 62.0.3202.62,8.8,HIGH,0.026909999549388885,false,false,false,false,,false,false,2018-02-07T23:00:00.000Z,0
CVE-2017-5126,https://securityvulnerability.io/vulnerability/CVE-2017-5126,,A use after free in PDFium in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file.,Google,Google Chrome Prior To 62.0.3202.62,8.8,HIGH,0.017160000279545784,false,false,false,false,,false,false,2018-02-07T23:00:00.000Z,0
CVE-2017-5127,https://securityvulnerability.io/vulnerability/CVE-2017-5127,,Use after free in PDFium in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file.,Google,Google Chrome Prior To 62.0.3202.62,8.8,HIGH,0.017160000279545784,false,false,false,false,,false,false,2018-02-07T23:00:00.000Z,0
CVE-2017-5128,https://securityvulnerability.io/vulnerability/CVE-2017-5128,,"Heap buffer overflow in Blink in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page, related to WebGL.",Google,Google Chrome Prior To 62.0.3202.62,8.8,HIGH,0.02727000042796135,false,false,false,false,,false,false,2018-02-07T23:00:00.000Z,0
CVE-2017-5129,https://securityvulnerability.io/vulnerability/CVE-2017-5129,,A use after free in WebAudio in Blink in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.,Google,Google Chrome Prior To 62.0.3202.62,8.8,HIGH,0.015289999544620514,false,false,false,false,,false,false,2018-02-07T23:00:00.000Z,0
CVE-2017-5131,https://securityvulnerability.io/vulnerability/CVE-2017-5131,,"An integer overflow in Skia in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page, aka an out-of-bounds write.",Google,Google Chrome Prior To 62.0.3202.62,8.8,HIGH,0.02222999930381775,false,false,false,false,,false,false,2018-02-07T23:00:00.000Z,0
CVE-2017-5132,https://securityvulnerability.io/vulnerability/CVE-2017-5132,,"Inappropriate implementation in V8 in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page, aka incorrect WebAssembly stack manipulation.",Google,Google Chrome Prior To 62.0.3202.62,8.8,HIGH,0.01947000063955784,false,false,false,false,,false,false,2018-02-07T23:00:00.000Z,0
CVE-2017-5133,https://securityvulnerability.io/vulnerability/CVE-2017-5133,,Off-by-one read/write on the heap in Blink in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to corrupt memory and possibly leak information and potentially execute code via a crafted PDF file.,Google,Google Chrome Prior To 62.0.3202.62,8.8,HIGH,0.03660000115633011,false,false,false,false,,false,false,2018-02-07T23:00:00.000Z,0
CVE-2017-5130,https://securityvulnerability.io/vulnerability/CVE-2017-5130,,"An integer overflow in xmlmemory.c in libxml2 before 2.9.5, as used in Google Chrome prior to 62.0.3202.62 and other products, allowed a remote attacker to potentially exploit heap corruption via a crafted XML file.",Google,Google Chrome Prior To 62.0.3202.62,8.8,HIGH,0.012860000133514404,false,false,false,false,,false,false,2018-02-07T23:00:00.000Z,0