Microsoft Edge in Windows 10 1607 and 1703, and Windows Server 2016 allows an attacker to read data not intended to be disclosed when Edge allows JavaScript XML DOM objects to detect installed browser extensions, aka "Microsoft Edge Information Disclosure Vulnerability". This CVE ID is unique from CVE-2017-8504.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/98886 | Third Party Advisory VDB Entry |
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8498 | Patch Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: microsoft
Published: 2017-06-15T01:00:00
Updated: 2017-06-15T09:57:01
Reserved: 2017-05-03T00:00:00
Link: CVE-2017-8498
JSON object: View
NVD Information
Status : Analyzed
Published: 2017-06-15T01:29:03.633
Modified: 2017-06-21T14:28:48.037
Link: CVE-2017-8498
JSON object: View
Redhat Information
No data.
CWE