CVE-2017-0012

4.3MEDIUM

Key Information:

Vendor: Microsoft
Status: Browsers
Vendor: CVE Published:; 17 March 2017

Summary

Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to spoof web content via a crafted web site, aka "Microsoft Browser Spoofing Vulnerability." This vulnerability is different from those described in CVE-2017-0033 and CVE-2017-0069.

Affected Version(s)

Browsers Internet Explorer 11 and Microsoft Edge

References

http://www.securitytracker.com/id/1038006

vdb-entryx_refsource_SECTRACK

https://portal.msrc.microsoft.com/en-US/security-guidance...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/96085

vdb-entryx_refsource_BID

EPSS Score

12% chance of being exploited in the next 30 days.

CVSS V3.1

Score:

4.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Mar 17, 2017
Vulnerability Reserved
Sep 9, 2016

Collectors

NVD DatabaseMitre Database

.