Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

msrc логотип

CVE-2017-8643

Опубликовано: 12 сент. 2017
Источник: msrc
CVSS3: 2.4
EPSS Средний

Описание

Microsoft Edge Information Disclosure Vulnerability

An information disclosure vulnerability exists when Microsoft Edge improperly handles clipboard events.

For an attack to be successful, an attacker must persuade a user to visit a malicious website and leave it open during clipboard activities.

The update addresses the vulnerability by changing how Microsoft Edge handles clipboard events in the browser.

Обновления

ПродуктСтатьяОбновление
Microsoft Edge (EdgeHTML-based) on Windows Server 2016
4038782
Security Update
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1703 for 32-bit Systems
4038788
Security Update
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1703 for x64-based Systems
4038788
Security Update
Microsoft Edge (EdgeHTML-based) on Windows 10 for 32-bit Systems
4038781
Security Update
Microsoft Edge (EdgeHTML-based) on Windows 10 for x64-based Systems
4038781
Security Update
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1511 for 32-bit Systems
4038783
Security Update
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1511 for x64-based Systems
4038783
Security Update
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1607 for 32-bit Systems
4038782
Security Update
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1607 for x64-based Systems
4038782
Security Update

Показывать по

Возможность эксплуатации

Publicly Disclosed

No

Exploited

No

Latest Software Release

Exploitation More Likely

Older Software Release

N/A

EPSS

Процентиль: 93%
0.11405
Средний

2.4 Low

CVSS3

Связанные уязвимости

nvd логотип

CVE-2017-8643

CVSS3: 4.3
nvd
почти 8 лет назад

Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to leave a malicious website open during user clipboard activities, due to the way that Microsoft Edge handles clipboard events, aka "Microsoft Edge Information Disclosure Vulnerability". This CVE ID is unique from CVE-2017-8597 and CVE-2017-8648.

github логотип

GHSA-4x74-x3h9-92gq

CVSS3: 4.3
github
больше 3 лет назад

Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to leave a malicious website open during user clipboard activities, due to the way that Microsoft Edge handles clipboard events, aka "Microsoft Edge Information Disclosure Vulnerability". This CVE ID is unique from CVE-2017-8597 and CVE-2017-8648.

EPSS

Процентиль: 93%
0.11405
Средний

2.4 Low

CVSS3