[Forgot Password]
Login  Register Subscribe

23631

 
 

114973

 
 

93458

 
 

909

 
 

76924

 
 

97

Paid content will be excluded from the download.


Download | Alert*
CVE
view XML

CVE-2017-8548

Date: (C)2017-06-16   (M)2017-07-11
 
CVSS Score: 7.6Access Vector: NETWORK
Exploitability Subscore: 4.9Access Complexity: HIGH
Impact Subscore: 10.0Authentication: NONE
 Confidentiality: COMPLETE
 Integrity: COMPLETE
 Availability: COMPLETE











Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an attacker to obtain information to further compromise the user's system when Microsoft Edge improperly handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-8499, CVE-2017-8520, CVE-2017-8521, and CVE-2017-8549.

Reference:
SECTRACK-1038676
BID-98954
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8548

CPE    1
cpe:/a:microsoft:edge
CWE    1
CWE-119
OVAL    5
oval:org.secpod.oval:def:40953
oval:org.secpod.oval:def:40934
oval:org.secpod.oval:def:40933
oval:org.secpod.oval:def:40939
...

© 2016 SecPod Technologies