Microsoft Internet Explorer 11 vulnerabilities
161 known vulnerabilities affecting microsoft/internet_explorer_11.
Total CVEs
161
CISA KEV
13
actively exploited
Public exploits
15
Exploited in wild
17
Severity breakdown
HIGH128MEDIUM33
Vulnerabilities
Page 7 of 9
CVE-2018-8389HIGHCVSS 7.5ExploitedvWindows 10 for 32-bit SystemsvWindows 10 for x64-based Systems+16 more2018-08-15
CVE-2018-8389 [HIGH] CVE-2018-8389: A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka "Scripting Engin
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka "Scripting Engine Memory Corruption Vulnerability." This affects Internet Explorer 9, Internet Explorer 11, Internet Explorer 10. This CVE ID is unique from CVE-2018-8353, CVE-201
cvelistv5
CVE-2018-8385HIGHCVSS 7.5vWindows 10 for 32-bit SystemsvWindows 10 for x64-based Systems+16 more2018-08-15
CVE-2018-8385 [HIGH] CVE-2018-8385: A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka "Scripting Engine Me
A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka "Scripting Engine Memory Corruption Vulnerability." This affects Internet Explorer 9, ChakraCore, Internet Explorer 11, Microsoft Edge, Internet Explorer 10. This CVE ID is unique fro
cvelistv5
CVE-2018-8357HIGHCVSS 8.3vWindows 10 for 32-bit SystemsvWindows 10 for x64-based Systems+9 more2018-08-15
CVE-2018-8357 [HIGH] CVE-2018-8357: An elevation of privilege vulnerability exists in Microsoft browsers allowing sandbox escape, aka "M
An elevation of privilege vulnerability exists in Microsoft browsers allowing sandbox escape, aka "Microsoft Browser Elevation of Privilege Vulnerability." This affects Internet Explorer 11, Microsoft Edge.
cvelistv5nvd
CVE-2018-8316HIGHCVSS 7.5vWindows 10 for 32-bit SystemsvWindows 10 for x64-based Systems+16 more2018-08-15
CVE-2018-8316 [HIGH] CWE-20 CVE-2018-8316: A remote code execution vulnerability exists when Internet Explorer improperly validates hyperlinks
A remote code execution vulnerability exists when Internet Explorer improperly validates hyperlinks before loading executable libraries, aka "Internet Explorer Remote Code Execution Vulnerability." This affects Internet Explorer 11, Internet Explorer 10.
cvelistv5nvd
CVE-2018-8372HIGHCVSS 7.5PoCvWindows 10 for 32-bit SystemsvWindows 10 for x64-based Systems+16 more2018-08-15
CVE-2018-8372 [HIGH] CVE-2018-8372: A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka "Scripting Engine Me
A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka "Scripting Engine Memory Corruption Vulnerability." This affects ChakraCore, Internet Explorer 11, Microsoft Edge. This CVE ID is unique from CVE-2018-8353, CVE-2018-8355, CVE-2018-83
cvelistv5
CVE-2018-8371HIGHCVSS 7.5vWindows 10 for 32-bit SystemsvWindows 10 for x64-based Systems+16 more2018-08-15
CVE-2018-8371 [HIGH] CVE-2018-8371: A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka "Scripting Engin
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka "Scripting Engine Memory Corruption Vulnerability." This affects Internet Explorer 9, Internet Explorer 11, Internet Explorer 10. This CVE ID is unique from CVE-2018-8353, CVE-201
cvelistv5
CVE-2018-8373HIGHCVSS 7.5KEVvWindows 10 for 32-bit SystemsvWindows 10 for x64-based Systems+16 more2018-08-15
CVE-2018-8373 [HIGH] CVE-2018-8373: A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka "Scripting Engin
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka "Scripting Engine Memory Corruption Vulnerability." This affects Internet Explorer 9, Internet Explorer 11, Internet Explorer 10. This CVE ID is unique from CVE-2018-8353, CVE-201
cvelistv5
CVE-2018-8351MEDIUMCVSS 6.5vWindows 10 for 32-bit SystemsvWindows 10 for x64-based Systems+16 more2018-08-15
CVE-2018-8351 [MEDIUM] CWE-829 CVE-2018-8351: An information disclosure vulnerability exists when affected Microsoft browsers improperly allow cro
An information disclosure vulnerability exists when affected Microsoft browsers improperly allow cross-frame interaction, aka "Microsoft Browser Information Disclosure Vulnerability." This affects Internet Explorer 11, Microsoft Edge, Internet Explorer 10.
cvelistv5nvd
CVE-2018-8287HIGHCVSS 7.5vWindows 10 for 32-bit SystemsvWindows 10 for x64-based Systems+16 more2018-07-11
CVE-2018-8287 [HIGH] CVE-2018-8287: A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka "Scripting Engine Me
A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka "Scripting Engine Memory Corruption Vulnerability." This affects ChakraCore, Internet Explorer 11, Microsoft Edge, Internet Explorer 10. This CVE ID is unique from CVE-2018-8242, CVE-
cvelistv5
CVE-2018-8288HIGHCVSS 7.5PoCvWindows 10 for 32-bit SystemsvWindows 10 for x64-based Systems+16 more2018-07-11
CVE-2018-8288 [HIGH] CVE-2018-8288: A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka "Scripting Engine Me
A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka "Scripting Engine Memory Corruption Vulnerability." This affects ChakraCore, Internet Explorer 11, Microsoft Edge. This CVE ID is unique from CVE-2018-8242, CVE-2018-8283, CVE-2018-82
cvelistv5
CVE-2018-8242HIGHCVSS 7.5vWindows 10 for 32-bit SystemsvWindows 10 for x64-based Systems+16 more2018-07-11
CVE-2018-8242 [HIGH] CVE-2018-8242: A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka "Scripting Engin
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka "Scripting Engine Memory Corruption Vulnerability." This affects Internet Explorer 9, Internet Explorer 11, Internet Explorer 10. This CVE ID is unique from CVE-2018-8283, CVE-201
cvelistv5
CVE-2018-8296HIGHCVSS 7.5vWindows 10 for 32-bit SystemsvWindows 10 for x64-based Systems+16 more2018-07-11
CVE-2018-8296 [HIGH] CVE-2018-8296: A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka "Scripting Engin
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka "Scripting Engine Memory Corruption Vulnerability." This affects Internet Explorer 11. This CVE ID is unique from CVE-2018-8242, CVE-2018-8283, CVE-2018-8287, CVE-2018-8288, CVE-2
cvelistv5
CVE-2018-8291HIGHCVSS 7.5PoCvWindows 10 for 32-bit SystemsvWindows 10 for x64-based Systems+16 more2018-07-11
CVE-2018-8291 [HIGH] CVE-2018-8291: A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka "Scripting Engine Me
A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka "Scripting Engine Memory Corruption Vulnerability." This affects ChakraCore, Internet Explorer 11, Microsoft Edge. This CVE ID is unique from CVE-2018-8242, CVE-2018-8283, CVE-2018-82
cvelistv5
CVE-2018-0949MEDIUMCVSS 6.5vWindows 10 for 32-bit SystemsvWindows 10 for x64-based Systems+16 more2018-07-11
CVE-2018-0949 [MEDIUM] CVE-2018-0949: A security feature bypass vulnerability exists when Microsoft Internet Explorer improperly handles r
A security feature bypass vulnerability exists when Microsoft Internet Explorer improperly handles requests involving UNC resources, aka "Internet Explorer Security Feature Bypass Vulnerability." This affects Internet Explorer 9, Internet Explorer 11, Internet Explorer 10.
cvelistv5nvd
CVE-2018-0978HIGHCVSS 7.5vWindows 7 for 32-bit Systems Service Pack 1vWindows 7 for x64-based Systems Service Pack 1+5 more2018-06-14
CVE-2018-0978 [HIGH] CWE-787 CVE-2018-0978: A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in m
A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka "Internet Explorer Memory Corruption Vulnerability." This affects Internet Explorer 9, Internet Explorer 11, Internet Explorer 10. This CVE ID is unique from CVE-2018-8249.
cvelistv5nvd
CVE-2018-8243HIGHCVSS 7.5vWindows 10 for 32-bit SystemsvWindows 10 for x64-based Systems+16 more2018-06-14
CVE-2018-8243 [HIGH] CWE-787 CVE-2018-8243: A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles
A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability." This affects ChakraCore. This CVE ID is unique from CVE-2018-8267.
nvd
CVE-2018-8249HIGHCVSS 7.5vWindows 7 for 32-bit Systems Service Pack 1vWindows 7 for x64-based Systems Service Pack 1+5 more2018-06-14
CVE-2018-8249 [HIGH] CVE-2018-8249: A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka "Internet Explorer Memory Corruption Vu
A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka "Internet Explorer Memory Corruption Vulnerability." This affects Internet Explorer 11. This CVE ID is unique from CVE-2018-0978.
cvelistv5
CVE-2018-8267HIGHCVSS 7.5ExploitedvWindows 10 for 32-bit SystemsvWindows 10 for x64-based Systems+16 more2018-06-14
CVE-2018-8267 [HIGH] CVE-2018-8267: A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka "Scripting Engin
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka "Scripting Engine Memory Corruption Vulnerability." This affects Internet Explorer 9, Internet Explorer 11, Internet Explorer 10. This CVE ID is unique from CVE-2018-8243.
cvelistv5
CVE-2018-8113MEDIUMCVSS 6.5vWindows 10 Version 1703 for 32-bit SystemsvWindows 10 Version 1703 for x64-based Systems+4 more2018-06-14
CVE-2018-8113 [MEDIUM] CVE-2018-8113: A security feature bypass vulnerability exists in Internet Explorer that allows for bypassing Mark o
A security feature bypass vulnerability exists in Internet Explorer that allows for bypassing Mark of the Web Tagging (MOTW), aka "Internet Explorer Security Feature Bypass Vulnerability." This affects Internet Explorer 11.
cvelistv5nvd
CVE-2018-0955HIGHCVSS 7.5ExploitedvWindows 10 for 32-bit SystemsvWindows 10 for x64-based Systems+16 more2018-05-09
CVE-2018-0955 [HIGH] CVE-2018-0955: A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka "Scripting Engin
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka "Scripting Engine Memory Corruption Vulnerability." This affects Internet Explorer 9, Internet Explorer 11, Internet Explorer 10. This CVE ID is unique from CVE-2018-0945, CVE-201
cvelistv5