CVE-2020-1059

EUVD-2020-11951
A spoofing vulnerability exists when Microsoft Edge does not properly parse HTTP content, aka 'Microsoft Edge Spoofing Vulnerability'.
Open Redirect
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4.3 MEDIUM
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 84%
Affected Products (NVD)
VendorProductVersion
microsoftedge
-
𝑥
= Vulnerable software versions
Windows Releases
Platform
Version
Windows 10
1803 (arm64, x64, x86)
KB4556807
1809 (arm64, x64, x86)
KB4551853
1903 (arm64, x64, x86)
KB4556799
1909 (arm64, x64, x86)
KB4556799
Windows Server 2019
Standard
KB4551853
Common Weakness Enumeration
References
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1059
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1059