Microsoft Edge JavaScript XML DOM Objects Information Disclosure Vulnerability

Microsoft Edge JavaScript XML DOM Objects Information Disclosure Vulnerability

CVE-2017-8498 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:N/A:N

Microsoft Edge in Windows 10 1607 and 1703, and Windows Server 2016 allows an attacker to read data not intended to be disclosed when Edge allows JavaScript XML DOM objects to detect installed browser extensions, aka "Microsoft Edge Information Disclosure Vulnerability". This CVE ID is unique from CVE-2017-8504.

Learn more about our Cis Benchmark Audit For Server Software.