CVE-2018-0879Sensitive Information Exposure in Corporation Microsoft Edge

CWE-200Sensitive Information Exposure6 documents5 sources
Severity
7.5HIGHNVD
EPSS
22.7%
top 4.13%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Microsoft Corporation Microsoft Edge
Timeline
PublishedMar 14
Latest updateMay 14

Description

Microsoft Edge in Windows 10 1709 allows information disclosure, due to how Edge handles objects in memory, aka "Microsoft Edge Information Disclosure Vulnerability".

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages1 packages

CVEListV5microsoft_corporation/microsoft_edgeWindows 10 1709

Patches

Patch: portal.msrc.microsoft.comPatch: portal.msrc.microsoft.com

🔴Vulnerability Details

2
GHSA
GHSA-jxxf-2hcp-72r5: Microsoft Edge in Windows 10 1709 allows information disclosure, due to how Edge handles objects in memory, aka "Microsoft Edge Information Disclosure2022-05-14
CVEList
CVE-2018-0879: Microsoft Edge in Windows 10 1709 allows information disclosure, due to how Edge handles objects in memory, aka "Microsoft Edge Information Disclosure2018-03-14

📋Vendor Advisories

1
Microsoft
Microsoft Edge based on Edge HTML Information Disclosure Vulnerability2018-03-13

🕵️Threat Intelligence

2
Talos
Microsoft Patch Tuesday - March 20182018-03-13
Talos
Microsoft Patch Tuesday - March 20182018-03-13
CVE-2018-0879 — Sensitive Information Exposure | cvebase