Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMicrosoftCVELIST:CVE-2017-0022
HistoryMar 17, 2017 - 12:00 a.m.

CVE-2017-0022

2017-03-1700:00:00
microsoft
www.cve.org
1

4.5 Medium

AI Score

Confidence

High

0.785 High

EPSS

Percentile

98.3%

JSON

Microsoft XML Core Services (MSXML) in Windows 10 Gold, 1511, and 1607; Windows 7 SP1; Windows 8.1; Windows RT 8.1; Windows Server 2008 SP2 and R2 SP1; Windows Server 2012 Gold and R2; Windows Server 2016; and Windows Vista SP2 improperly handles objects in memory, allowing attackers to test for files on disk via a crafted web site, aka “Microsoft XML Information Disclosure Vulnerability.”

CNA Affected

[
  {
    "product": "XML Core Services",
    "vendor": "Microsoft Corporation",
    "versions": [
      {
        "status": "affected",
        "version": "XML Core Services (MSXML) in Windows 10 Gold, 1511, and 1607; Windows 7 SP1; Windows 8.1; Windows RT 8.1; Windows Server 2008 SP2 and R2 SP1; Windows Server 2012 Gold and R2; Windows Server 2016; and Windows Vista SP2"
      }
    ]
  }
]

Related

cve 1
kaspersky 4
mscve 1
prion 1
attackerkb 1
nvd 1
mskb 11
checkpoint_advisories 1
symantec 1
cisa_kev 1
nessus 1
openvas 1
cve
cve
CVE-2017-0022
2017-03-17 00:59:00
kaspersky
kaspersky
KLA10989 Information disclosure vulnerability in Microsoft XML Core Services
2017-03-14 00:00:00
KLA11833 Multiple vulnerabilities in Microsoft Developer Tools
2017-03-14 00:00:00
KLA11902 Multiple vulnerabilities in Microsoft Products (ESU)
2017-03-14 00:00:00
mscve
mscve
Microsoft XML Core Services Information Disclosure Vulnerability
2017-03-14 07:00:00
prion
prion
Information disclosure
2017-03-17 00:59:00
attackerkb
attackerkb
CVE-2017-0022
2017-03-17 00:00:00
nvd
nvd
CVE-2017-0022
2017-03-17 00:59:00
mskb
mskb
Security update 2017-03-14
2017-03-14 07:00:00
MS17-022: Security update for Microsoft XML Core Services: March 14, 2017
2017-03-14 00:00:00
March 2017 Security Only Quality Update for Windows Server 2012
2017-03-14 07:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft XML Core Services Information Disclosure (MS17-022: CVE-2017-0022)
2017-03-14 00:00:00
symantec
symantec
Microsoft XML Core Services CVE-2017-0022 Information Disclosure Vulnerability
2017-03-14 00:00:00
cisa_kev
cisa_kev
Microsoft XML Core Services Information Disclosure Vulnerability
2022-05-24 00:00:00
nessus
nessus
MS17-022: Security Update for Microsoft XML Core Services (4010321)
2017-03-15 00:00:00
openvas
openvas
Microsoft Windows XML Core Services Information Disclosure Vulnerability (4010321)
2017-03-15 00:00:00

4.5 Medium

AI Score

Confidence

High

0.785 High

EPSS

Percentile

98.3%

JSON
Related for CVELIST:CVE-2017-0022
cve1kaspersky4mscve1prion1attackerkb1nvd1mskb11checkpoint_advisories1symantec1cisa_kev1nessus1openvas1