CVE-2017-5116

HIGH

Google Chrome <61.0.3163.79-61.0.3163.81 - RCE

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2017-5116. PoCs published by qazbnm456, xbl3.

AI-analyzed exploit summary This repository contains a functional proof-of-concept exploit for CVE-2017-5116, a race condition vulnerability in V8's WebAssembly implementation. The PoC uses a SharedArrayBuffer and a Web Worker to manipulate WebAssembly code concurrently, leading to a type confusion exploit.

Description

Type confusion in V8 in Google Chrome prior to 61.0.3163.79 for Mac, Windows, and Linux, and 61.0.3163.81 for Android, allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.

Exploits (2)

github WORKING POC 3,480 stars
by qazbnm456 · poc
https://github.com/qazbnm456/awesome-cve-poc/tree/master/CVE-2017-5116.md

This repository contains a functional proof-of-concept exploit for CVE-2017-5116, a race condition vulnerability in V8's WebAssembly implementation. The PoC uses a SharedArrayBuffer and a Web Worker to manipulate WebAssembly code concurrently, leading to a type confusion exploit.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Complex
Reliability
Racy
Target: Chromium-based browsers (V8 engine) prior to August 2017
No auth needed
Prerequisites: Browser with WebAssembly and SharedArrayBuffer support · Vulnerable version of V8 engine
devstral-2 · analyzed Feb 27, 2026 Full analysis →
github WORKING POC 14 stars
by xbl3 · poc
https://github.com/xbl3/awesome-cve-poc_qazbnm456/tree/master/CVE-2017-5116.md

This repository contains a functional proof-of-concept exploit for CVE-2017-5116, a race condition vulnerability in V8's WebAssembly implementation. The PoC uses a SharedArrayBuffer and a Web Worker to trigger a race condition, leading to potential memory corruption.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Racy
Target: Chromium-based browsers (V8 engine) before August 2017
No auth needed
Prerequisites: Browser with WebAssembly and SharedArrayBuffer support · Vulnerable version of V8 engine
devstral-2 · analyzed Feb 27, 2026 Full analysis →

References (8)

Core 8
Core References
Third Party Advisory vendor-advisory x_refsource_gentoo
https://security.gentoo.org/glsa/201709-15
Vendor Advisory vendor-advisory x_refsource_redhat
https://access.redhat.com/errata/RHSA-2017:2676
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1039291
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/100610
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2017/dsa-3985
Issue Tracking x_refsource_misc
https://crbug.com/759624

Scores

CVSS v3 8.8
EPSS 0.1267
EPSS Percentile 95.7%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE
CWE-843
Status published
Products (7)
debian/debian_linux 9.0
debian/debian_linux 10.0
google/chrome < 61.0.3163.79
n/a/Google Chrome prior to 61.0.3163.79 for Mac, Windows and Linux, and 61.0.3163.81 for Android Google Chrome prior to 61.0.3163.79 for Mac, Windows and Linux, and 61.0.3163.81 for Android
redhat/enterprise_linux_desktop 6.0
redhat/enterprise_linux_server 6.0
redhat/enterprise_linux_workstation 6.0
Published Oct 27, 2017
Tracked Since Feb 18, 2026