CVE-2020-1059

4.3MEDIUM

Key Information:

Vendor
Microsoft
Status
Microsoft Edge (edgehtml-based) On Windows 10 Version 1803 For 32-bit Systems
Microsoft Edge (edgehtml-based) On Windows 10 Version 1803 For X64-based Systems
Microsoft Edge (edgehtml-based) On Windows 10 Version 1803 For Arm64-based Systems
Microsoft Edge (edgehtml-based) On Windows 10 Version 1809 For 32-bit Systems
Vendor
CVE Published:
21 May 2020

Summary

A spoofing vulnerability exists when Microsoft Edge does not properly parse HTTP content, aka 'Microsoft Edge Spoofing Vulnerability'.

Affected Version(s)

Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1803 for 32-bit Systems = unspecified

Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1803 for ARM64-based Systems = unspecified

Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1803 for x64-based Systems = unspecified

References

https://portal.msrc.microsoft.com/en-US/security-guidance...
x_refsource_MISC

CVSS V3.1

Score:
4.3
Severity:
MEDIUM
Confidentiality:
None
Integrity:
Low
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Collectors

NVD DatabaseMitre Database
.