Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2016-5172

The parser in Google V8, as used in Google Chrome before 53.0.2785.113, mishandles scopes, which allows remote attackers to obtain sensitive information from arbitrary memory locations via crafted JavaScript code.

  • Published: Sep 25, 2016
  • Updated: Apr 13, 2023
  • CVE: CVE-2016-5172
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 6.5
  • AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

CVSS v2:

  • Severity: Low
  • Score: 4.3
  • AV:N/AC:M/Au:N/C:P/I:N/A:N

CWEs:

Software From Fixed in
google / chrome - 53.0.2785.101.x
nodejs / node.js 6.0.0 6.8.1.x
debian / debian_linux 8.0 8.0.x
debian / debian_linux 9.0 9.0.x