VYPR
Medium severity4.3NVD Advisory· Published Jun 15, 2017· Updated Jun 17, 2026

CVE-2017-8504

CVE-2017-8504

Description

Microsoft Edge in Windows 10 1607 and 1703, and Windows Server 2016 allows an attacker to read the URL of a cross-origin request when the Microsoft Edge Fetch API incorrectly handles a filtered response type, aka "Microsoft Edge Information Disclosure Vulnerability". This CVE ID is unique from CVE-2017-8498.

Affected products

2
  • cpe:2.3:a:microsoft:edge:*:*:*:*:*:*:*:*
  • Microsoft Corporation/Microsoft Edgev5
    Range: Microsoft Windows 10 1607 and 1703, and Windows Server 2016.

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.