Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMicrosoftCVE-2018-8278
HistoryJul 11, 2018 - 12:29 a.m.

CVE-2018-8278

2018-07-1100:29:00
CWE-290
microsoft
web.nvd.nist.gov
53
microsoft edge
spoofing vulnerability
cve-2018-8278
nvd

CVSS2

5.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

CVSS3

6.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

AI Score

6.3

Confidence

High

EPSS

0.003

Percentile

69.3%

JSON

A spoofing vulnerability exists when Microsoft Edge improperly handles specific HTML content, aka “Microsoft Edge Spoofing Vulnerability.” This affects Microsoft Edge.

Affected configurations

Nvd
Vulners
Node
microsoftwindows_10Match1803
AND
microsoftedgeMatch-
VendorProductVersionCPE
microsoftwindows_101803cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*
microsoftedge-cpe:2.3:a:microsoft:edge:-:*:*:*:*:*:*:*

CNA Affected

[
  {
    "product": "Microsoft Edge",
    "vendor": "Microsoft",
    "versions": [
      {
        "status": "affected",
        "version": "Windows 10 Version 1803 for 32-bit Systems"
      },
      {
        "status": "affected",
        "version": "Windows 10 Version 1803 for x64-based Systems"
      }
    ]
  }
]

Related

checkpoint_advisories 1
symantec 1
prion 1
mscve 1
nvd 1
cvelist 1
krebs 1
threatpost 1
kaspersky 1
mskb 2
nessus 1
openvas 1
trendmicroblog 1
talosblog 1
checkpoint_advisories
checkpoint_advisories
Microsoft Edge Spoofing (CVE-2018-8278)
2018-07-10 00:00:00
symantec
symantec
Microsoft Edge CVE-2018-8278 Spoofing Vulnerability
2018-07-10 00:00:00
prion
prion
Spoofing
2018-07-11 00:29:00
mscve
mscve
Microsoft Edge Spoofing Vulnerability
2018-07-10 07:00:00
nvd
nvd
CVE-2018-8278
2018-07-11 00:29:00
cvelist
cvelist
CVE-2018-8278
2018-07-11 00:00:00
krebs
krebs
Patch Tuesday, July 2018 Edition
2018-07-11 02:34:41
threatpost
threatpost
Microsoft Fixes 17 Critical Bugs in July Patch Tuesday Release
2018-07-10 19:50:41
kaspersky
kaspersky
KLA11290 Multiple vulnerabilities in Microsoft Edge and Internet Explorer
2018-07-10 00:00:00
mskb
mskb
July 16, 2018—KB4345421 (OS Build 17134.167)
2018-07-10 07:00:00
July 10, 2018—KB4338819 (OS Build 17134.165)
2018-07-10 07:00:00
nessus
nessus
KB4338819: Windows 10 Version 1803 and Windows Server Version 1803 July 2018 Security Update
2018-07-10 00:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB4338819)
2018-07-11 00:00:00
trendmicroblog
trendmicroblog
Zero-Day Coverage Update – Week of July 9, 2018
2018-07-13 14:10:20
talosblog
talosblog
Microsoft Patch Tuesday - July 2018
2018-07-10 10:36:00

CVSS2

5.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

CVSS3

6.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

AI Score

6.3

Confidence

High

EPSS

0.003

Percentile

69.3%

JSON
Related for CVE-2018-8278
checkpoint_advisories1symantec1prion1mscve1nvd1cvelist1krebs1threatpost1kaspersky1mskb2nessus1openvas1trendmicroblog1talosblog1