CVE-2017-5027

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 56.0.2924.76 for Linux, Windows and Mac Google Chrome version prior to 56.0.2924.87 for Android Opera (affected versions not specified)

Description The issue is related to the Blink component in Google Chrome, which failed to properly enforce the unsafe-inline content security policy. This allowed a remote attacker to bypass the content security policy via a crafted HTML page. The exploitation of this issue can enable a remote attacker to circumvent the content security policy using a specially formed HTML page.

Recommendations For Google Chrome versions prior to 56.0.2924.76 on Linux, Windows, and Mac, update to version 56.0.2924.76 or later. For Google Chrome version prior to 56.0.2924.87 on Android, update to version 56.0.2924.87 or later. For Opera, at the moment, there is no information about a newer version that contains a fix for this vulnerability.