Spoofing Vulnerability in Microsoft Edge and Internet Explorer 11
CVE-2017-0033

4.3MEDIUM

Key Information:

Vendor: Microsoft
Status: Browser
Vendor: CVE Published:; 17 March 2017

🔔 Create Microsoft Vulnerability Alert

What is CVE-2017-0033?

The vulnerability in Microsoft Internet Explorer 11 and Microsoft Edge enables remote attackers to manipulate web content through a specially crafted website. This exploitation can lead to misleading information being displayed to users, thereby compromising the integrity of web applications and user trust. It is essential for users and organizations to be aware of and mitigate this vulnerability to enhance their security posture.

Affected Version(s)

Browser Internet Explorer 11 and Microsoft Edge

References

http://www.securityfocus.com/bid/96087

vdb-entryx_refsource_BID

https://portal.msrc.microsoft.com/en-US/security-guidance...

x_refsource_CONFIRM

http://www.securitytracker.com/id/1038006

vdb-entryx_refsource_SECTRACK

EPSS Score

7% chance of being exploited in the next 30 days.

CVSS V3.1

Score:

4.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 17, 2017
Vulnerability Reserved
Sep 9, 2016

.

CVE-2017-0033 : Spoofing Vulnerability in Microsoft Edge and Internet Explorer 11