Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to obtain information to further compromise the user's system due to the Chakra scripting engine not properly handling objects in memory, aka "Scripting Engine Information Disclosure Vulnerability".
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/100029 | Third Party Advisory VDB Entry |
http://www.securitytracker.com/id/1039095 | Third Party Advisory VDB Entry |
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8659 | Patch Vendor Advisory |
http://www.securityfocus.com/bid/100029 | Third Party Advisory VDB Entry |
http://www.securitytracker.com/id/1039095 | Third Party Advisory VDB Entry |
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8659 | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
21 Nov 2024, 03:34
Type | Values Removed | Values Added |
---|---|---|
References | () http://www.securityfocus.com/bid/100029 - Third Party Advisory, VDB Entry | |
References | () http://www.securitytracker.com/id/1039095 - Third Party Advisory, VDB Entry | |
References | () https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8659 - Patch, Vendor Advisory |
Information
Published : 2017-08-08 21:29
Updated : 2024-11-21 03:34
NVD link : CVE-2017-8659
Mitre link : CVE-2017-8659
CVE.ORG link : CVE-2017-8659
JSON object : View
Products Affected
microsoft
- windows_10
- edge
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor