CVE-2016-0158

Name of the Vulnerable Software and Affected Versions Microsoft Edge (affected versions not specified)

Description The issue is related to errors in security settings, allowing a remote attacker to bypass existing access restriction policies. It is an elevation of privilege vulnerability that occurs when Microsoft Edge does not properly enforce cross-domain policies. This could allow an attacker to access information from one domain and inject it into another domain. However, it does not allow arbitrary code to be run on its own. The vulnerability could be used in conjunction with another vulnerability, such as a remote code execution vulnerability, to take advantage of elevated privileges when running arbitrary code.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.