Vulnerability Details CVE-2016-3392
The Edge Content Security Policy feature in Microsoft Edge does not properly validate documents, which allows remote attackers to bypass intended access restrictions via a crafted web site, aka "Microsoft Browser Security Feature Bypass Vulnerability."
Exploit prediction scoring system (EPSS) score
EPSS Score 0.094
EPSS Ranking 92.4%
CVSS Severity
CVSS v3 Score 5.3
CVSS v2 Score 2.6
References
- http://www.securityfocus.com/bid/93401
- http://www.securitytracker.com/id/1036993
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-119
- http://www.securityfocus.com/bid/93401
- http://www.securitytracker.com/id/1036993
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-119