4.3
CVE-2018-0771
- EPSS 5.89%
- Veröffentlicht 15.02.2018 02:29:01
- Zuletzt bearbeitet 21.11.2024 03:38:55
- Quelle secure@microsoft.com
- CVE-Watchlists
- Unerledigt
Microsoft Edge in Microsoft Windows 10 1607, 1703, and Windows Server 2016 allows a security feature bypass, due to how Edge handles different-origin requests, aka "Microsoft Edge Security Feature Bypass".
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Microsoft ≫ Edge
Microsoft ≫ Windows 10 Version1607
Microsoft ≫ Windows 10 Version1703
Microsoft ≫ Windows Server 2016
Microsoft ≫ Windows 10 Version1703
Microsoft ≫ Windows Server 2016
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 5.89% | 0.923 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.3 | 2.8 | 1.4 |
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
|
| nvd@nist.gov | 4.3 | 8.6 | 2.9 |
AV:N/AC:M/Au:N/C:P/I:N/A:N
|
http://www.securitytracker.com/id/1040372
http://www.securityfocus.com/bid/102857
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0771