CVE-2018-8370Sensitive Information Exposure in Microsoft Edge

CWE-200Sensitive Information Exposure6 documents5 sources
Severity
3.1LOWNVD
EPSS
9.7%
top 7.05%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Microsoft Edge
Timeline
PublishedAug 15
Latest updateMay 14

Description

A information disclosure vulnerability exists when WebAudio Library improperly handles audio requests, aka "Microsoft Edge Information Disclosure Vulnerability." This affects Microsoft Edge.

CVSS vector

CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:NExploitability: 1.6 | Impact: 1.4

Affected Packages1 packages

CVEListV5microsoft/microsoft_edge11 versions+10

Patches

Patch: portal.msrc.microsoft.comPatch: portal.msrc.microsoft.com

🔴Vulnerability Details

2
GHSA
GHSA-98r3-hhp2-gpgm: A information disclosure vulnerability exists when WebAudio Library improperly handles audio requests, aka "Microsoft Edge Information Disclosure Vuln2022-05-14
CVEList
CVE-2018-8370: A information disclosure vulnerability exists when WebAudio Library improperly handles audio requests, aka "Microsoft Edge Information Disclosure Vuln2018-08-15

📋Vendor Advisories

1
Microsoft
Microsoft Edge Information Disclosure Vulnerability2018-08-14

🕵️Threat Intelligence

2
Talos
Microsoft Tuesday August 20182018-08-14
Talos
Microsoft Tuesday August 20182018-08-14
CVE-2018-8370 — Sensitive Information Exposure | cvebase