CVE-2018-0771

Name of the Vulnerable Software and Affected Versions: Microsoft Edge in Microsoft Windows versions prior to the fixed version

Description: A security feature bypass issue exists due to how Microsoft Edge handles different-origin requests. This allows Microsoft Edge to bypass Same-Origin Policy (SOP) restrictions and permit requests that should otherwise be ignored. An attacker who successfully exploits this issue could force the browser to send data that would otherwise be restricted.

Recommendations: For Microsoft Edge in Microsoft Windows 10 1607, 1703, and Windows Server 2016, update to a version that includes the fix for this security feature bypass issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.