CVE-2017-8599

Summary

Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an attacker to trick a user into loading a page with malicious content when the Edge Content Security Policy (CSP) fails to properly validate certain specially crafted documents, aka "Microsoft Edge Security Feature Bypass Vulnerability".

Affected Software

VendorProductVersion RangeStatus
Microsoft CorporationWindows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016Edge CSPaffected

Weaknesses

  • Security Feature Bypass

ADP Enrichment

CVE Program Container

Additional References

References