Bird_banner_small4
Microsoft Edge CVE-2017-0065 Information Disclosure
TSL ID TSL20170316-06
CVE ID(s) CVE-2017-0065
Severity Moderate
Description

An information disclosure vulnerability has been reported in Microsoft Edge. This vulnerability is due to a design weakness in the affected software.

A remote attacker can exploit this vulnerability by enticing the victim to open a maliciously crafted web page. Successful exploitation would allow the attacker to gain sensitive information.

Microsoft has issued the following advisories regarding these vulnerabilities:

https://technet.microsoft.com/library/security/MS17-007

Affected Products
  • Microsoft Edge .
CVSS Score Base 5.8 (AV:N/AC:M/Au:N/C:P/I:N/A:P):
  • Access vector is NETWORK
  • Access complexity is MEDIUM
  • Level of authentication required is NONE
  • Impact of this vulnerability on data confidentiality is PARTIAL
  • Impact of this vulnerability on data integrity is NONE
  • Impact of this vulnerability on data availability is PARTIAL
Temporal 4.3 (E:U/RL:OF/RC:C):
  • The exploitability level of this vulnerability is UNPROVEN
  • The remediation level of this vulnerability is OFFICIAL FIX
  • The report confidence level of this vulnerability is CONFIRMED
Identifiers
Microsoft Security Bulletin
Related Threats