7.6 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
8.3 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H
8.6 High
AI Score
Confidence
Low
0.246 Low
EPSS
Percentile
96.7%
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, spoof user interface, bypass security restrictions.
Below is a complete list of vulnerabilities:
CVE-2017-0266 critical
CVE-2017-0241 high
CVE-2017-0240 critical
CVE-2017-0238 critical
CVE-2017-0236 critical
CVE-2017-0235 critical
CVE-2017-0234 critical
CVE-2017-0233 high
CVE-2017-0231 warning
CVE-2017-0230 critical
CVE-2017-0229 critical
CVE-2017-0228 critical
CVE-2017-0227 critical
CVE-2017-0226 critical
CVE-2017-0224 critical
CVE-2017-0222 critical
CVE-2017-0221 critical
CVE-2017-0064 warning
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.
Security bypass. Exploitation of vulnerabilities with this impact can lead to performing actions restricted by current security settings.
Privilege escalation. Exploitation of vulnerabilities with this impact can lead to performing by abuser actions, which are normally disallowed for current role.
Spoof user interface. Exploitation of vulnerabilities with this impact can lead to changes in user interface to beguile user into inaccurate behavior.
support.microsoft.com/kb/4016871
support.microsoft.com/kb/4018271
support.microsoft.com/kb/4019215
support.microsoft.com/kb/4019216
support.microsoft.com/kb/4019264
support.microsoft.com/kb/4019472
support.microsoft.com/kb/4019473
support.microsoft.com/kb/4019474
support.microsoft.com/kb/4034658
support.microsoft.com/kb/4034660
support.microsoft.com/kb/4034668
support.microsoft.com/kb/4034674
support.microsoft.com/kb/4034681
support.microsoft.com/kb/4034733
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0064
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0221
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0222
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0224
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0226
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0227
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0228
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0229
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0230
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0231
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0233
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0234
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0235
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0236
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0238
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0240
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0241
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2017-0266
statistics.securelist.com/
threats.kaspersky.com/en/product/Microsoft-Edge/
threats.kaspersky.com/en/product/Microsoft-Internet-Explorer/
7.6 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
8.3 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H
8.6 High
AI Score
Confidence
Low
0.246 Low
EPSS
Percentile
96.7%