Description
Cast in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android sent cookies to sites discovered via SSDP, which allowed an attacker on the local network segment to initiate connections to arbitrary URLs and observe any plaintext cookies sent.
References (6)
Core 6
Core References
Release Notes, Vendor Advisory x_refsource_confirm
https://chromereleases.googleblog.com/2017/03/stable-channel-update-for-desktop.html
Third Party Advisory vendor-advisory
x_refsource_gentoo
https://security.gentoo.org/glsa/201704-02
Issue Tracking x_refsource_confirm
https://crbug.com/671932
Third Party Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2017/dsa-3810
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/96767
Vendor Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2017-0499.html
Scores
CVSS v3
5.7
EPSS
0.0004
EPSS Percentile
13.3%
Attack Vector
ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-311
Status
published
Products (7)
debian/debian_linux
8.0
debian/debian_linux
9.0
google/chrome
< 57.0.2987.75
n/a/Google Chrome prior to 57.0.2987.98 for Mac, Windows and Linux, and 57.0.2987.108 for Android
Google Chrome prior to 57.0.2987.98 for Mac, Windows and Linux, and 57.0.2987.108 for Android
redhat/enterprise_linux_desktop
6.0
redhat/enterprise_linux_server
6.0
redhat/enterprise_linux_workstation
6.0
Published
Apr 24, 2017
Tracked Since
Feb 18, 2026