VYPR
Medium severity6.1NVD Advisory· Published Mar 17, 2017· Updated Jun 17, 2026

CVE-2017-0017

CVE-2017-0017

Description

The RegEx class in the XSS filter in Microsoft Edge allows remote attackers to conduct cross-site scripting (XSS) attacks and obtain sensitive information via unspecified vectors, aka "Microsoft Edge Information Disclosure Vulnerability." This vulnerability is different from those described in CVE-2017-0009, CVE-2017-0011, CVE-2017-0065, and CVE-2017-0068.

Affected products

4
  • Microsoft/Edge4 versions
    cpe:2.3:a:microsoft:edge:*:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:microsoft:edge:*:*:*:*:*:*:*:*
    • (no CPE)
    • (no CPE)
    • (no CPE)range: The RegEx class in the XSS filter in Microsoft Edge

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.