mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-07-29 05:56:59 +00:00
68 lines
2.0 KiB
JSON
68 lines
2.0 KiB
JSON
{
|
|
"CVE_data_meta" : {
|
|
"ASSIGNER" : "secure@microsoft.com",
|
|
"ID" : "CVE-2017-8498",
|
|
"STATE" : "PUBLIC"
|
|
},
|
|
"affects" : {
|
|
"vendor" : {
|
|
"vendor_data" : [
|
|
{
|
|
"product" : {
|
|
"product_data" : [
|
|
{
|
|
"product_name" : "Microsoft Edge",
|
|
"version" : {
|
|
"version_data" : [
|
|
{
|
|
"version_value" : "Microsoft Windows 10 1607 and 1703, and Windows Server 2016."
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
},
|
|
"vendor_name" : "Microsoft Corporation"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"data_format" : "MITRE",
|
|
"data_type" : "CVE",
|
|
"data_version" : "4.0",
|
|
"description" : {
|
|
"description_data" : [
|
|
{
|
|
"lang" : "eng",
|
|
"value" : "Microsoft Edge in Windows 10 1607 and 1703, and Windows Server 2016 allows an attacker to read data not intended to be disclosed when Edge allows JavaScript XML DOM objects to detect installed browser extensions, aka \"Microsoft Edge Information Disclosure Vulnerability\". This CVE ID is unique from CVE-2017-8504."
|
|
}
|
|
]
|
|
},
|
|
"problemtype" : {
|
|
"problemtype_data" : [
|
|
{
|
|
"description" : [
|
|
{
|
|
"lang" : "eng",
|
|
"value" : "Information Disclosure"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references" : {
|
|
"reference_data" : [
|
|
{
|
|
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8498",
|
|
"refsource" : "CONFIRM",
|
|
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8498"
|
|
},
|
|
{
|
|
"name" : "98886",
|
|
"refsource" : "BID",
|
|
"url" : "http://www.securityfocus.com/bid/98886"
|
|
}
|
|
]
|
|
}
|
|
}
|