VYPR

Edge

by Microsoft

Source repositories

CVEs (738)

  • CVE-2017-8754MedSep 13, 2017
    risk 0.28cvss 4.2epss 0.03

    Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to trick a user into loading a page containing malicious content, due to the way that the Edge Content Security Policy (CSP) validates certain specially crafted documents,…

  • CVE-2017-8739MedSep 13, 2017
    risk 0.28cvss 4.3epss 0.06

    Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to obtain information to further compromise the user's system, due to the way that the Microsoft Edge scripting engine handles objects in memory, aka "Scripting Engine Information Disclosure Vulnerability".

  • CVE-2017-8735MedSep 13, 2017
    risk 0.28cvss 4.3epss 0.04

    Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to trick a user by redirecting the user to a specially crafted website, due to the way that Microsoft Edge parses HTTP content, aka "Microsoft Edge Spoofing Vulnerability".…

  • CVE-2017-8724MedSep 13, 2017
    risk 0.28cvss 4.3epss 0.04

    Microsoft Edge in Microsoft Windows 10 Version 1703 allows an attacker to trick a user by redirecting the user to a specially crafted website, due to the way that Microsoft Edge parses HTTP content, aka "Microsoft Edge Spoofing Vulnerability". This CVE ID is unique from…

  • CVE-2017-8723MedSep 13, 2017
    risk 0.28cvss 4.3epss 0.04

    Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to trick a user into loading a page containing malicious content, due to the way that the Edge Content Security Policy (CSP) validates certain specially crafted documents,…

  • CVE-2017-8643MedSep 13, 2017
    risk 0.28cvss 4.3epss 0.06

    Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to leave a malicious website open during user clipboard activities, due to the way that Microsoft Edge handles clipboard events, aka "Microsoft Edge Information Disclosure…

  • CVE-2017-8662MedAug 8, 2017
    risk 0.28cvss 4.3epss 0.06

    Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to disclose information due to how strings are validated in specific scenarios, aka "Microsoft Edge Information Disclosure Vulnerability". This CVE ID is unique from CVE-2017-8644 and CVE-2017-8652.

  • CVE-2017-8523MedJun 15, 2017
    risk 0.28cvss 4.3epss 0.01

    Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an attacker to trick a user into loading a page with malicious content when Microsoft Edge fails to correctly apply Same Origin Policy for HTML elements present in other browser…

  • CVE-2017-8504MedJun 15, 2017
    risk 0.28cvss 4.3epss 0.05

    Microsoft Edge in Windows 10 1607 and 1703, and Windows Server 2016 allows an attacker to read the URL of a cross-origin request when the Microsoft Edge Fetch API incorrectly handles a filtered response type, aka "Microsoft Edge Information Disclosure Vulnerability". This CVE ID…

  • CVE-2017-8498MedJun 15, 2017
    risk 0.28cvss 4.3epss 0.05

    Microsoft Edge in Windows 10 1607 and 1703, and Windows Server 2016 allows an attacker to read data not intended to be disclosed when Edge allows JavaScript XML DOM objects to detect installed browser extensions, aka "Microsoft Edge Information Disclosure Vulnerability". This…

  • CVE-2017-0231MedMay 12, 2017
    risk 0.28cvss 4.3epss 0.04

    A spoofing vulnerability exists when Microsoft browsers render SmartScreen Filter, aka "Microsoft Browser Spoofing Vulnerability."

  • CVE-2017-0203MedApr 12, 2017
    risk 0.28cvss 4.3epss 0.04

    A vulnerability exists in Microsoft Edge when the Edge Content Security Policy (CSP) fails to properly validate certain specially crafted documents. An attacker could trick a user into loading a web page with malicious content, aka "Microsoft Edge Security Feature Bypass…

  • CVE-2017-0135MedMar 17, 2017
    risk 0.28cvss 4.2epss 0.08

    Microsoft Edge allows remote attackers to bypass the Same Origin Policy for HTML elements in other browser windows, aka "Microsoft Edge Security Feature Bypass Vulnerability." This vulnerability is different from those described in CVE-2017-0066 and CVE-2017-0140.

  • CVE-2016-3325LowSep 14, 2016
    risk 0.27cvss 3.1epss 0.54

    Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to obtain sensitive information via a crafted web site, aka "Microsoft Browser Information Disclosure Vulnerability."

  • CVE-2021-26411KEVMar 11, 2021
    risk 0.25cvss epss 0.81

    Internet Explorer Memory Corruption Vulnerability

  • CVE-2017-0208MedApr 12, 2017
    risk 0.22cvss 4.3epss 0.15

    An information disclosure vulnerability exists in Microsoft Edge when the Chakra scripting engine does not properly handle objects in memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user's system, a.k.a.…

  • CVE-2018-8452MedSep 13, 2018
    risk 0.21cvss 4.3epss 0.06

    An information disclosure vulnerability exists when the scripting engine does not properly handle objects in memory in Microsoft browsers, aka "Scripting Engine Information Disclosure Vulnerability." This affects ChakraCore, Internet Explorer 11, Microsoft Edge.

  • CVE-2018-8366LowSep 13, 2018
    risk 0.21cvss 3.1epss 0.05

    An information disclosure vulnerability exists when the Microsoft Edge Fetch API incorrectly handles a filtered response type, aka "Microsoft Edge Information Disclosure Vulnerability." This affects Microsoft Edge.

  • CVE-2018-8315MedSep 13, 2018
    risk 0.21cvss 4.2epss 0.03

    An information disclosure vulnerability exists when the browser scripting engine improperly handle object types, aka "Microsoft Scripting Engine Information Disclosure Vulnerability." This affects ChakraCore, Internet Explorer 11, Microsoft Edge, Internet Explorer 10.

  • CVE-2018-8370LowAug 15, 2018
    risk 0.21cvss 3.1epss 0.05

    A information disclosure vulnerability exists when WebAudio Library improperly handles audio requests, aka "Microsoft Edge Information Disclosure Vulnerability." This affects Microsoft Edge.

Page 23 of 37