CVE-2017-8735

Name of the Vulnerable Software and Affected Versions Microsoft Edge in Microsoft Windows versions 10 Gold, 1511, 1607, 1703, and Windows Server 2016

Description The issue arises from the way Microsoft Edge parses HTTP content, allowing an attacker to trick a user into visiting a specially crafted website. This could lead to content spoofing or serve as a pivot for chaining attacks with other web service vulnerabilities. To exploit this, a user must click on a specially crafted URL.

Recommendations For Microsoft Edge in Microsoft Windows versions 10 Gold, 1511, 1607, 1703, and Windows Server 2016, consider restricting access to untrusted websites and avoiding clicking on suspicious URLs until a fix is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.