Medium severity4.3NVD Advisory· Published Jun 15, 2017· Updated Jun 17, 2026
CVE-2017-8498
CVE-2017-8498
Description
Microsoft Edge in Windows 10 1607 and 1703, and Windows Server 2016 allows an attacker to read data not intended to be disclosed when Edge allows JavaScript XML DOM objects to detect installed browser extensions, aka "Microsoft Edge Information Disclosure Vulnerability". This CVE ID is unique from CVE-2017-8504.
Affected products
2- Microsoft Corporation/Microsoft Edgev5Range: Microsoft Windows 10 1607 and 1703, and Windows Server 2016.
Patches
Vulnerability mechanics
References
2- portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8498nvdPatchVendor Advisory
- www.securityfocus.com/bid/98886nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.