CVE-2017-8739

EUVD-2017-17685
Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to obtain information to further compromise the user's system, due to the way that the Microsoft Edge scripting engine handles objects in memory, aka "Scripting Engine Information Disclosure Vulnerability".
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4.3 MEDIUM
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 93%
Affected Products (NVD)
VendorProductVersion
microsoftedge
*
𝑥
= Vulnerable software versions
Windows Releases
Platform
Version
Windows 10
1703 (x64, x86)
KB4038788
Common Weakness Enumeration
References
http://www.securityfocus.com/bid/100761
http://www.securitytracker.com/id/1039342
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8739
http://www.securityfocus.com/bid/100761
http://www.securitytracker.com/id/1039342
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8739