CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-0210

An elevation of privilege vulnerability exists when Internet Explorer does not properly enforce cross-domain policies, which could allow an attacker to access information from one domain and inject it into another domain, aka "Internet Explorer Elevation of Privilege Vulnerability."

Exploit prediction scoring system (EPSS) score

EPSS Score 0.226

EPSS Ranking 95.5%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 4.3

Proposed Action

A privilege escalation vulnerability exists when Internet Explorer does not properly enforce cross-domain policies, which could allow an attacker to access information.

Ransomware Campaign

Unknown

References

Products affected by CVE-2017-0210

Microsoft » Internet Explorer » Version: 10

cpe:2.3:a:microsoft:internet_explorer:10
Microsoft » Internet Explorer » Version: 11

cpe:2.3:a:microsoft:internet_explorer:11
Microsoft » Windows 10 1507 » Version: N/A

cpe:2.3:o:microsoft:windows_10_1507:-
Microsoft » Windows 10 1511 » Version: N/A

cpe:2.3:o:microsoft:windows_10_1511:-
Microsoft » Windows 10 1607 » Version: N/A

cpe:2.3:o:microsoft:windows_10_1607:-
Microsoft » Windows 10 1703 » Version: N/A

cpe:2.3:o:microsoft:windows_10_1703:-
Microsoft » Windows 7 » Version: N/A

cpe:2.3:o:microsoft:windows_7:-
Microsoft » Windows 8.1 » Version: N/A

cpe:2.3:o:microsoft:windows_8.1:-
Microsoft » Windows Rt 8.1 » Version: N/A

cpe:2.3:o:microsoft:windows_rt_8.1:-
Microsoft » Windows Server 2008 » Version: r2

cpe:2.3:o:microsoft:windows_server_2008:r2
Microsoft » Windows Server 2012 » Version: N/A

cpe:2.3:o:microsoft:windows_server_2012:-
Microsoft » Windows Server 2012 » Version: r2

cpe:2.3:o:microsoft:windows_server_2012:r2
Microsoft » Windows Server 2016 » Version: N/A

cpe:2.3:o:microsoft:windows_server_2016:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-0210

Products

Pricing

Contact Us