CVE-2019-0658

An information disclosure vulnerability exists when the scripting engine does not properly handle objects in memory in Microsoft Edge, aka 'Scripting Engine Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0648.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.5 MEDIUM
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
microsoftCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 95%
VendorProductVersion
microsoftedge
-
microsoftchakracore
𝑥
< 1.11.6
𝑥
= Vulnerable software versions
References
http://www.securityfocus.com/bid/106882
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0658
http://www.securityfocus.com/bid/106882
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0658