Vulnerability Details CVE-2017-11888
Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to how Microsoft Edge handles objects in memory, aka "Microsoft Edge Memory Corruption Vulnerability".
Exploit prediction scoring system (EPSS) score
EPSS Score 0.205
EPSS Ranking 95.3%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 7.6
References
- http://www.securityfocus.com/bid/102065
- http://www.securitytracker.com/id/1039990
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11888
- http://www.securityfocus.com/bid/102065
- http://www.securitytracker.com/id/1039990
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11888
Products affected by CVE-2017-11888
-
cpe:2.3:a:microsoft:edge:-
-
cpe:2.3:o:microsoft:windows_10:-
-
cpe:2.3:o:microsoft:windows_10:1511
-
cpe:2.3:o:microsoft:windows_10:1607
-
cpe:2.3:o:microsoft:windows_10:1703
-
cpe:2.3:o:microsoft:windows_10:1709
-
cpe:2.3:o:microsoft:windows_server_2016:-