[Forgot Password]
Login  Register Subscribe

23631

 
 

115038

 
 

96174

 
 

909

 
 

78077

 
 

109

Paid content will be excluded from the download.


Download | Alert*
CVE
view XML

CVE-2017-8548

Date: (C)2017-06-16   (M)2017-10-12
 
CVSS Score: 7.6Access Vector: NETWORK
Exploitability Subscore: 4.9Access Complexity: HIGH
Impact Subscore: 10.0Authentication: NONE
 Confidentiality: COMPLETE
 Integrity: COMPLETE
 Availability: COMPLETE











Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an attacker to obtain information to further compromise the user's system when Microsoft Edge improperly handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-8499, CVE-2017-8520, CVE-2017-8521, and CVE-2017-8549.

Reference:
SECTRACK-1038676
EXPLOIT-DB-42473
BID-98954
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8548

CPE    1
cpe:/a:microsoft:edge
CWE    1
CWE-119
OVAL    5
oval:org.secpod.oval:def:40933
oval:org.secpod.oval:def:40934
oval:org.secpod.oval:def:40939
oval:org.secpod.oval:def:40953
...

© 2013 SecPod Technologies