CVE-2017-8504

Summary

Microsoft Edge in Windows 10 1607 and 1703, and Windows Server 2016 allows an attacker to read the URL of a cross-origin request when the Microsoft Edge Fetch API incorrectly handles a filtered response type, aka "Microsoft Edge Information Disclosure Vulnerability". This CVE ID is unique from CVE-2017-8498.

Affected Software

VendorProductVersion RangeStatus
Microsoft CorporationMicrosoft EdgeMicrosoft Windows 10 1607 and 1703, and Windows Server 2016.affected

Weaknesses

  • Information Disclosure

ADP Enrichment

CVE Program Container

Additional References

References