Local Privilege Escalation in Crash Reporting in Google Chrome on Chrome OS

Local Privilege Escalation in Crash Reporting in Google Chrome on Chrome OS

CVE-2017-15404 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

An ability to process crash dumps under root privileges and inappropriate symlinks handling could lead to a local privilege escalation in Crash Reporting in Google Chrome on Chrome OS prior to 61.0.3163.113 allowed a local attacker to perform privilege escalation via a crafted HTML page.

Learn more about our Cis Benchmark Audit For Google Chrome.