The vulnerability is caused due to a boundary error when parsing format strings containing a floating point specifier in the util.printf() JavaScript function.
CVE Link
Exploit Type - Old
Exploits/Client Side
Exploit Platform
Product Name