CVE-2017-11794

EUVD-2017-3401
Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to obtain information to further compromise the user's system, due to how Microsoft Edge handles objects in memory, aka "Microsoft Edge Information Disclosure Vulnerability". This CVE ID is unique from CVE-2017-8726 and CVE-2017-11803.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4.3 MEDIUM
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 93%
Affected Products (NVD)
VendorProductVersion
microsoftedge
*
𝑥
= Vulnerable software versions
Windows Releases
Platform
Version
Windows 10
1703 (x64, x86)
KB4041676
Common Weakness Enumeration
References
http://www.securityfocus.com/bid/101079
http://www.securitytracker.com/id/1039529
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11794
http://www.securityfocus.com/bid/101079
http://www.securitytracker.com/id/1039529
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11794