Microsoft Internet Explorer vulnerabilities
1,594 known vulnerabilities affecting microsoft/internet_explorer.
Total CVEs
1,594
CISA KEV
40
actively exploited
Public exploits
364
Exploited in wild
48
Severity breakdown
CRITICAL690HIGH450MEDIUM404LOW50
Vulnerabilities
Page 20 of 80
CVE-2015-6083CRITICALCVSS 9.3v8v9+2 more2015-12-09
CVE-2015-6083 [CRITICAL] CWE-119 CVE-2015-6083: Microsoft Internet Explorer 8 through 11 allows remote attackers to execute arbitrary code or cause
Microsoft Internet Explorer 8 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2015-6151.
nvd
CVE-2015-6141CRITICALCVSS 9.3v92015-12-09
CVE-2015-6141 [CRITICAL] CVE-2015-6141: Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code or cause a denial of
Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2015-6134.
nvd
CVE-2015-6151CRITICALCVSS 9.3v8v9+2 more2015-12-09
CVE-2015-6151 [CRITICAL] CVE-2015-6151: Microsoft Internet Explorer 8 through 11 and Microsoft Edge allow remote attackers to execute arbitr
Microsoft Internet Explorer 8 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Browser Memory Corruption Vulnerability," a different vulnerability than CVE-2015-6083.
nvd
CVE-2015-6148CRITICALCVSS 9.3v9v10+1 more2015-12-09
CVE-2015-6148 [CRITICAL] CWE-119 CVE-2015-6148: Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitr
Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Browser Memory Corruption Vulnerability," a different vulnerability than CVE-2015-6156.
nvd
CVE-2015-6146CRITICALCVSS 9.3v7v82015-12-09
CVE-2015-6146 [CRITICAL] CVE-2015-6146: Microsoft Internet Explorer 7 and 8 allows remote attackers to execute arbitrary code or cause a den
Microsoft Internet Explorer 7 and 8 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2015-6145.
nvd
CVE-2015-6149CRITICALCVSS 9.3v8v92015-12-09
CVE-2015-6149 [CRITICAL] CVE-2015-6149: Microsoft Internet Explorer 8 and 9 allows remote attackers to execute arbitrary code or cause a den
Microsoft Internet Explorer 8 and 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2015-6147.
nvd
CVE-2015-6160CRITICALCVSS 9.3v112015-12-09
CVE-2015-6160 [CRITICAL] CVE-2015-6160: Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial o
Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2015-6140, CVE-2015-6142, CVE-2015-6143, CVE-2015-6153, CVE-2015-6158, and CVE-2015-6159.
nvd
CVE-2015-6162CRITICALCVSS 9.3v102015-12-09
CVE-2015-6162 [CRITICAL] CVE-2015-6162: Microsoft Internet Explorer 10 allows remote attackers to execute arbitrary code or cause a denial o
Microsoft Internet Explorer 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2015-6152.
nvd
CVE-2015-6147CRITICALCVSS 9.3v8v92015-12-09
CVE-2015-6147 [CRITICAL] CWE-119 CVE-2015-6147: Microsoft Internet Explorer 8 and 9 allows remote attackers to execute arbitrary code or cause a den
Microsoft Internet Explorer 8 and 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2015-6149.
nvd
CVE-2015-6158CRITICALCVSS 9.3v112015-12-09
CVE-2015-6158 [CRITICAL] CVE-2015-6158: Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to execute arbitrary code o
Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Browser Memory Corruption Vulnerability," a different vulnerability than CVE-2015-6140, CVE-2015-6142, CVE-2015-6143, CVE-2015-6153, CVE-2015-6159, and CVE-2015-6160.
nvd
CVE-2015-6140CRITICALCVSS 9.3v112015-12-09
CVE-2015-6140 [CRITICAL] CWE-119 CVE-2015-6140: Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to execute arbitrary code o
Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Browser Memory Corruption Vulnerability," a different vulnerability than CVE-2015-6142, CVE-2015-6143, CVE-2015-6153, CVE-2015-6158, CVE-2015-6159, and CVE-2015-616
nvd
CVE-2015-6156CRITICALCVSS 9.3v9v10+1 more2015-12-09
CVE-2015-6156 [CRITICAL] CVE-2015-6156: Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause
Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2015-6148.
nvd
CVE-2015-6150CRITICALCVSS 9.3v7v8+3 more2015-12-09
CVE-2015-6150 [CRITICAL] CWE-119 CVE-2015-6150: Microsoft Internet Explorer 7 through 11 allows remote attackers to execute arbitrary code or cause
Microsoft Internet Explorer 7 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2015-6154.
nvd
CVE-2015-6152CRITICALCVSS 9.3PoCv102015-12-09
CVE-2015-6152 [CRITICAL] CWE-119 CVE-2015-6152: Microsoft Internet Explorer 10 allows remote attackers to execute arbitrary code or cause a denial o
Microsoft Internet Explorer 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2015-6162.
nvd
CVE-2015-6144MEDIUMCVSS 4.3v8v9+2 more2015-12-09
CVE-2015-6144 [MEDIUM] CWE-79 CVE-2015-6144: Microsoft Internet Explorer 8 through 11 and Microsoft Edge mishandle HTML attributes in HTTP respon
Microsoft Internet Explorer 8 through 11 and Microsoft Edge mishandle HTML attributes in HTTP responses, which allows remote attackers to bypass a cross-site scripting (XSS) protection mechanism via unspecified vectors, aka "Microsoft Browser XSS Filter Bypass Vulnerability."
nvd
CVE-2015-6161MEDIUMCVSS 4.3v7v8+3 more2015-12-09
CVE-2015-6161 [MEDIUM] CWE-200 CVE-2015-6161: Microsoft Internet Explorer 7 through 11 and Microsoft Edge allow remote attackers to bypass the ASL
Microsoft Internet Explorer 7 through 11 and Microsoft Edge allow remote attackers to bypass the ASLR protection mechanism via a crafted web site, aka "Microsoft Browser ASLR Bypass."
nvd
CVE-2015-6164MEDIUMCVSS 6.8v9v10+1 more2015-12-09
CVE-2015-6164 [MEDIUM] CWE-20 CVE-2015-6164: Microsoft Internet Explorer 9 through 11 improperly implements a cross-site scripting (XSS) protecti
Microsoft Internet Explorer 9 through 11 improperly implements a cross-site scripting (XSS) protection mechanism, which allows remote attackers to bypass the Same Origin Policy via a crafted web site, aka "Internet Explorer XSS Filter Bypass Vulnerability."
nvd
CVE-2015-6138MEDIUMCVSS 4.3v8v9+2 more2015-12-09
CVE-2015-6138 [MEDIUM] CWE-79 CVE-2015-6138: Microsoft Internet Explorer 8 through 11 mishandles HTML attributes in HTTP responses, which allows
Microsoft Internet Explorer 8 through 11 mishandles HTML attributes in HTTP responses, which allows remote attackers to bypass a cross-site scripting (XSS) protection mechanism via unspecified vectors, aka "Internet Explorer XSS Filter Bypass Vulnerability."
nvd
CVE-2015-6157MEDIUMCVSS 4.3v112015-12-09
CVE-2015-6157 [MEDIUM] CWE-200 CVE-2015-6157: Microsoft Internet Explorer 11 allows remote attackers to obtain sensitive information from process
Microsoft Internet Explorer 11 allows remote attackers to obtain sensitive information from process memory via a crafted web site, aka "Internet Explorer Information Disclosure Vulnerability."
nvd
CVE-2015-6045CRITICALCVSS 9.3v112015-11-13
CVE-2015-6045 [CRITICAL] CVE-2015-6045: Use-after-free vulnerability in the CElement object implementation in Microsoft Internet Explorer 11
Use-after-free vulnerability in the CElement object implementation in Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted JavaScript that improperly interacts with use of the Cascading Style Sheets (CSS) empty-cells property for a TABLE element, aka "Internet Explorer
nvd