Published: 15/06/2017 Updated: 19/03/2019
CVSS v2 Base Score: 7.6 | Impact Score: 10 | Exploitability Score: 4.9
CVSS v3 Base Score: 7.5 | Impact Score: 5.9 | Exploitability Score: 1.6
VMScore: 765
Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C

Vulnerability Summary

Microsoft Edge in Windows 10 1607 and Windows Server 2016 allows an malicious user to execute arbitrary code in the context of the current user when Microsoft Edge improperly accesses objects in memory, aka "Microsoft Edge Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-8497.

Vulnerable Product Search on Vulmon Subscribe to Product

microsoft edge -


<!-- Source: bugschromiumorg/p/project-zero/issues/detail?id=1254 There is a type confusion vulnerability in Microsoft Edge The vulnerability has been confirmed on Windows 10 Enterprise 64-bit (OS version 1607, OS build 143931198) and Microsoft Edge 381439310660, Microsoft EdgeHTML 1414393 PoC ================================ ...

Mailing Lists

Microsoft Edge suffers from a type confusion vulnerability in CssParser::RecordProperty ...

Github Repositories

DOM fuzzer

Domato A DOM fuzzer Written and maintained by Ivan Fratric, ifratric@googlecom Copyright 2017 Google Inc All Rights Reserved Licensed under the Apache License, Version 20 (the "License"); you may not use this file except in compliance with the License You may obtain a copy of the License at wwwapacheorg/licenses/LICENSE-20 Unless required by applicabl