Cross-Origin Data Leakage in Skia Canvas Composite Operations in Google Chrome

Cross-Origin Data Leakage in Skia Canvas Composite Operations in Google Chrome

CVE-2017-15417 · LOW Severity

AV:N/AC:H/AU:N/C:P/I:N/A:N

Inappropriate implementation in Skia canvas composite operations in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to leak cross-origin data via a crafted HTML page.

Learn more about our Cis Benchmark Audit For Google Chrome.