Microsoft Internet Explorer vulnerabilities
1,594 known vulnerabilities affecting microsoft/internet_explorer.
Total CVEs
1,594
CISA KEV
40
actively exploited
Public exploits
364
Exploited in wild
48
Severity breakdown
CRITICAL690HIGH450MEDIUM404LOW50
Vulnerabilities
Page 19 of 80
CVE-2016-0071HIGHCVSS 8.8v92016-02-10
CVE-2016-0071 [HIGH] CWE-119 CVE-2016-0071: Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code or cause a denial of
Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability."
nvd
CVE-2016-0062HIGHCVSS 8.8v112016-02-10
CVE-2016-0062 [HIGH] CWE-119 CVE-2016-0062: Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to execute arbitrary code o
Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Browser Memory Corruption Vulnerability."
nvd
CVE-2016-0063HIGHCVSS 8.8PoCv9v10+1 more2016-02-10
CVE-2016-0063 [HIGH] CVE-2016-0063: Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause
Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2016-0060, CVE-2016-0061, CVE-2016-0067, and CVE-2016-0072.
nvd
CVE-2016-0041HIGHCVSS 7.8PoCv10v112016-02-10
CVE-2016-0041 [HIGH] CVE-2016-0041: Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows
Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold and 1511, and Internet Explorer 10 and 11 mishandle DLL loading, which allows local users to gain privileges via a crafted application, aka "DLL Loading Remote Code Execution Vulnerability."
nvd
CVE-2016-0072HIGHCVSS 8.8v9v10+1 more2016-02-10
CVE-2016-0072 [HIGH] CVE-2016-0072: Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause
Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2016-0060, CVE-2016-0061, CVE-2016-0063, and CVE-2016-0067.
nvd
CVE-2016-0064HIGHCVSS 8.8v102016-02-10
CVE-2016-0064 [HIGH] CWE-119 CVE-2016-0064: Microsoft Internet Explorer 10 allows remote attackers to execute arbitrary code or cause a denial o
Microsoft Internet Explorer 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability."
nvd
CVE-2016-0060HIGHCVSS 8.8v9v10+1 more2016-02-10
CVE-2016-0060 [HIGH] CWE-119 CVE-2016-0060: Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitr
Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Browser Memory Corruption Vulnerability," a different vulnerability than CVE-2016-0061, CVE-2016-0063, CVE-2016-0067, and CVE-2016-0072.
nvd
CVE-2016-0067HIGHCVSS 8.8v9v10+1 more2016-02-10
CVE-2016-0067 [HIGH] CVE-2016-0067: Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause
Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2016-0060, CVE-2016-0061, CVE-2016-0063, and CVE-2016-0072.
nvd
CVE-2016-0077MEDIUMCVSS 4.3v9v10+1 more2016-02-10
CVE-2016-0077 [MEDIUM] CWE-19 CVE-2016-0077: Microsoft Internet Explorer 9 through 11 and Microsoft Edge misparse HTTP responses, which allows re
Microsoft Internet Explorer 9 through 11 and Microsoft Edge misparse HTTP responses, which allows remote attackers to spoof web sites via a crafted URL, aka "Microsoft Browser Spoofing Vulnerability."
nvd
CVE-2016-0059MEDIUMCVSS 4.3v9v10+1 more2016-02-10
CVE-2016-0059 [MEDIUM] CWE-200 CVE-2016-0059: The Hyperlink Object Library in Microsoft Internet Explorer 9 through 11 allows remote attackers to
The Hyperlink Object Library in Microsoft Internet Explorer 9 through 11 allows remote attackers to obtain sensitive information from process memory via a crafted URL in a (1) e-mail message or (2) Office document, aka "Internet Explorer Information Disclosure Vulnerability."
nvd
CVE-2016-0005MEDIUMCVSS 4.3v9v10+1 more2016-01-13
CVE-2016-0005 [MEDIUM] CWE-20 CVE-2016-0005: Microsoft Internet Explorer 9 through 11 allows remote attackers to bypass the Same Origin Policy vi
Microsoft Internet Explorer 9 through 11 allows remote attackers to bypass the Same Origin Policy via unspecified vectors, aka "Internet Explorer Elevation of Privilege Vulnerability."
nvd
CVE-2015-6153CRITICALCVSS 9.3v112015-12-09
CVE-2015-6153 [CRITICAL] CWE-119 CVE-2015-6153: Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to execute arbitrary code o
Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Browser Memory Corruption Vulnerability," a different vulnerability than CVE-2015-6140, CVE-2015-6142, CVE-2015-6143, CVE-2015-6158, CVE-2015-6159, and CVE-2015-616
nvd
CVE-2015-6134CRITICALCVSS 9.3v92015-12-09
CVE-2015-6134 [CRITICAL] CWE-119 CVE-2015-6134: Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code or cause a denial of
Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2015-6141.
nvd
CVE-2015-6145CRITICALCVSS 9.3v7v82015-12-09
CVE-2015-6145 [CRITICAL] CWE-119 CVE-2015-6145: Microsoft Internet Explorer 7 and 8 allows remote attackers to execute arbitrary code or cause a den
Microsoft Internet Explorer 7 and 8 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2015-6146.
nvd
CVE-2015-6155CRITICALCVSS 9.3v10v112015-12-09
CVE-2015-6155 [CRITICAL] CWE-119 CVE-2015-6155: Microsoft Internet Explorer 10 and 11 and Microsoft Edge allow remote attackers to execute arbitrary
Microsoft Internet Explorer 10 and 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Browser Memory Corruption Vulnerability."
nvd
CVE-2015-6143CRITICALCVSS 9.3v112015-12-09
CVE-2015-6143 [CRITICAL] CVE-2015-6143: Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial o
Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2015-6140, CVE-2015-6142, CVE-2015-6153, CVE-2015-6158, CVE-2015-6159, and CVE-2015-6160.
nvd
CVE-2015-6142CRITICALCVSS 9.3v112015-12-09
CVE-2015-6142 [CRITICAL] CVE-2015-6142: Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to execute arbitrary code o
Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Browser Memory Corruption Vulnerability," a different vulnerability than CVE-2015-6140, CVE-2015-6143, CVE-2015-6153, CVE-2015-6158, CVE-2015-6159, and CVE-2015-6160.
nvd
CVE-2015-6159CRITICALCVSS 9.3v112015-12-09
CVE-2015-6159 [CRITICAL] CVE-2015-6159: Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to execute arbitrary code o
Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Browser Memory Corruption Vulnerability," a different vulnerability than CVE-2015-6140, CVE-2015-6142, CVE-2015-6143, CVE-2015-6153, CVE-2015-6158, and CVE-2015-6160.
nvd
CVE-2015-6154CRITICALCVSS 9.3v7v8+3 more2015-12-09
CVE-2015-6154 [CRITICAL] CVE-2015-6154: Microsoft Internet Explorer 7 through 11 and Microsoft Edge allow remote attackers to execute arbitr
Microsoft Internet Explorer 7 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Browser Memory Corruption Vulnerability," a different vulnerability than CVE-2015-6150.
nvd
CVE-2015-6139CRITICALCVSS 9.3v112015-12-09
CVE-2015-6139 [CRITICAL] CWE-264 CVE-2015-6139: Microsoft Internet Explorer 11 and Microsoft Edge mishandle content types, which allows remote attac
Microsoft Internet Explorer 11 and Microsoft Edge mishandle content types, which allows remote attackers to execute arbitrary web script in a privileged context via a crafted web site, aka "Microsoft Browser Elevation of Privilege Vulnerability."
nvd