|Date: (C)2017-10-30 (M)2017-11-18|| |
A timing attack in SVG rendering in Google Chrome prior to 60.0.3112.78 for Linux, Windows, and Mac allowed a remote attacker to extract pixel values from a cross-origin page being iframe'd via a crafted HTML page.
|CVSS Score: 4.3||Access Vector: |
|Exploit Score: ||Access Complexity: |
|Impact Score: ||Authentication: |
| ||Confidentiality: |
| ||Integrity: |
| ||Availability: |