CVE-2017-0231

EPSS 8.54%
Veröffentlicht 12.05.2017 14:29:02
Zuletzt bearbeitet 20.04.2025 01:37:25
Quelle secure@microsoft.com
CVE-Watchlists
Login
Unerledigt
Login

A spoofing vulnerability exists when Microsoft browsers render SmartScreen Filter, aka "Microsoft Browser Spoofing Vulnerability."

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 7

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Microsoft ≫ Edge

Microsoft ≫ Internet Explorer Version11

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	8.54%	0.915

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	4.3	2.8	1.4	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
nvd@nist.gov	4.3	8.6	2.9	AV:N/AC:M/Au:N/C:N/I:P/A:N

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

http://www.securityfocus.com/bid/98173

Third Party Advisory

VDB Entry

http://www.securitytracker.com/id/1038455

http://www.securitytracker.com/id/1038456

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0231

Patch

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2017-0231

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2017-0231

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2017-0231

EUVD