CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-0663

An elevation of privilege vulnerability exists when Microsoft Edge does not properly enforce cross-domain policies, which could allow an attacker to access information from one domain and inject it into another domain.In a web-based attack scenario, an attacker could host a website that is used to attempt to exploit the vulnerability, aka 'Microsoft Edge Elevation of Privilege Vulnerability'.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.014

EPSS Ranking 79.6%

CVSS Severity

CVSS v3 Score 4.2

CVSS v2 Score 4.0

References

Products affected by CVE-2020-0663

Microsoft » Edge » Version: N/A

cpe:2.3:a:microsoft:edge:-
Microsoft » Windows 10 » Version: 1803

cpe:2.3:o:microsoft:windows_10:1803
Microsoft » Windows 10 » Version: 1809

cpe:2.3:o:microsoft:windows_10:1809
Microsoft » Windows 10 » Version: 1903

cpe:2.3:o:microsoft:windows_10:1903
Microsoft » Windows 10 » Version: 1909

cpe:2.3:o:microsoft:windows_10:1909
Microsoft » Windows Server 2019 » Version: N/A

cpe:2.3:o:microsoft:windows_server_2019:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-0663

Products

Pricing

Contact Us