PT-2017-1866 · Microsoft · Edge

Bee13Oy

Publicado

2017-04-11

Atualizado

2022-05-17

CVE-2017-0208

CVSS v3.1

4.3

Média

Vetor

AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions Microsoft Edge (affected versions not specified)

Description An information disclosure issue exists due to the Chakra scripting engine's improper handling of objects in memory. This could allow an attacker to obtain information that could be used to further compromise the user's system. The vulnerability is related to insufficient restriction of the Chakra scripting engine's usage.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Information Disclosure

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-200

Identificadores relacionados

BDU:2017-01022

CVE-2017-0208

GHSA-PJPR-2QQP-GPRF

Produtos afetados

Edge

PT-2017-1866 · Microsoft · Edge

CVE-2017-0208

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 12