Search for vulnerabilities
Vulnerability details: VCID-jtsc-xwzs-ybd5
Vulnerability ID VCID-jtsc-xwzs-ybd5
Aliases CVE-2017-15387
Summary security update
Status Published
Exploitability 0.5
Weighted Severity 9.0
Risk 4.5
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
cvssv3 6.5 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15387.json
epss 0.01125 https://api.first.org/data/v1/epss?cve=CVE-2017-15387
epss 0.01125 https://api.first.org/data/v1/epss?cve=CVE-2017-15387
epss 0.01125 https://api.first.org/data/v1/epss?cve=CVE-2017-15387
epss 0.01125 https://api.first.org/data/v1/epss?cve=CVE-2017-15387
epss 0.01125 https://api.first.org/data/v1/epss?cve=CVE-2017-15387
epss 0.01125 https://api.first.org/data/v1/epss?cve=CVE-2017-15387
epss 0.01125 https://api.first.org/data/v1/epss?cve=CVE-2017-15387
epss 0.01125 https://api.first.org/data/v1/epss?cve=CVE-2017-15387
epss 0.01125 https://api.first.org/data/v1/epss?cve=CVE-2017-15387
epss 0.01125 https://api.first.org/data/v1/epss?cve=CVE-2017-15387
epss 0.01125 https://api.first.org/data/v1/epss?cve=CVE-2017-15387
epss 0.01125 https://api.first.org/data/v1/epss?cve=CVE-2017-15387
epss 0.01125 https://api.first.org/data/v1/epss?cve=CVE-2017-15387
epss 0.01125 https://api.first.org/data/v1/epss?cve=CVE-2017-15387
cvssv2 6.8 https://nvd.nist.gov/vuln/detail/CVE-2017-15387
cvssv3 8.8 https://nvd.nist.gov/vuln/detail/CVE-2017-15387
archlinux Critical https://security.archlinux.org/AVG-456
archlinux Critical https://security.archlinux.org/AVG-545
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15387.json
https://api.first.org/data/v1/epss?cve=CVE-2017-15387
https://chromereleases.googleblog.com/2017/10/stable-channel-update-for-desktop.html
https://crbug.com/756040
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15386
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15387
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15388
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15389
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15390
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15391
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15392
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15393
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15394
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15395
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15396
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15406
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5124
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5125
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5126
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5127
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5128
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5129
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5131
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5132
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5133
https://security.gentoo.org/glsa/201710-24
https://www.debian.org/security/2017/dsa-4020
http://www.securityfocus.com/bid/101482
1503542 https://bugzilla.redhat.com/show_bug.cgi?id=1503542
ASA-201710-27 https://security.archlinux.org/ASA-201710-27
ASA-201712-6 https://security.archlinux.org/ASA-201712-6
AVG-456 https://security.archlinux.org/AVG-456
AVG-545 https://security.archlinux.org/AVG-545
cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
CVE-2017-15387 https://nvd.nist.gov/vuln/detail/CVE-2017-15387
RHSA-2017:2997 https://access.redhat.com/errata/RHSA-2017:2997
No exploits are available.
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N Found at https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15387.json
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P Found at https://nvd.nist.gov/vuln/detail/CVE-2017-15387
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at https://nvd.nist.gov/vuln/detail/CVE-2017-15387
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Exploit Prediction Scoring System (EPSS)
Percentile 0.77375
EPSS Score 0.01125
Published At July 31, 2025, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2025-07-31T10:30:32.506398+00:00 Debian Oval Importer Import https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 37.0.0