CVE-2020-1220

Summary

A spoofing vulnerability exists when theMicrosoft Edge (Chromium-based) in IE Mode improperly handles specific redirects, aka 'Microsoft Edge (Chromium-based) in IE Mode Spoofing Vulnerability'.

Affected Software

VendorProductVersion RangeStatus
MicrosoftMicrosoft Edge (Chromium-based) in IE Mode on Windows 10 Version 1803 for ARM64-based Systemsunspecifiedaffected
MicrosoftMicrosoft Edge (Chromium-based) in IE Mode on Windows 10 Version 1803 for 32-bit Systemsunspecifiedaffected
MicrosoftMicrosoft Edge (Chromium-based) in IE Mode on Windows 10 Version 1803 for x64-based Systemsunspecifiedaffected
MicrosoftMicrosoft Edge (Chromium-based) in IE Mode on Windows 10 Version 1709 for x64-based Systemsunspecifiedaffected
MicrosoftMicrosoft Edge (Chromium-based) in IE Mode on Windows 10 Version 1909 for x64-based Systemsunspecifiedaffected
MicrosoftMicrosoft Edge (Chromium-based) in IE Mode on Windows 10 Version 1903 for 32-bit Systemsunspecifiedaffected
MicrosoftMicrosoft Edge (Chromium-based) in IE Mode on Windows 10 Version 1809 for ARM64-based Systemsunspecifiedaffected
MicrosoftMicrosoft Edge (Chromium-based) in IE Mode on Windows 10 Version 1809 for x64-based Systemsunspecifiedaffected
MicrosoftMicrosoft Edge (Chromium-based) in IE Mode on Windows Server 2019unspecifiedaffected
MicrosoftMicrosoft Edge (Chromium-based) in IE Mode on Windows 10 Version 2004 for ARM64-based Systemsunspecifiedaffected
MicrosoftMicrosoft Edge (Chromium-based) in IE Mode on Windows 10 Version 1909 for 32-bit Systemsunspecifiedaffected
MicrosoftMicrosoft Edge (Chromium-based) in IE Mode on Windows 10 Version 1903 for x64-based Systemsunspecifiedaffected
MicrosoftMicrosoft Edge (Chromium-based) in IE Mode on Windows 10 Version 1903 for ARM64-based Systemsunspecifiedaffected
MicrosoftMicrosoft Edge (Chromium-based) in IE Mode on Windows 10 Version 2004 for x64-based Systemsunspecifiedaffected
MicrosoftMicrosoft Edge (Chromium-based) in IE Mode on Windows 10 Version 1809 for 32-bit Systemsunspecifiedaffected
MicrosoftMicrosoft Edge (Chromium-based) in IE Mode on Windows Server 2012 R2unspecifiedaffected
MicrosoftMicrosoft Edge (Chromium-based) in IE Mode on Windows 10 Version 1607 for x64-based Systemsunspecifiedaffected
MicrosoftMicrosoft Edge (Chromium-based) in IE Mode on Windows RT 8.1unspecifiedaffected
MicrosoftMicrosoft Edge (Chromium-based) in IE Mode on Windows 10 Version 2004 for 32-bit Systemsunspecifiedaffected
MicrosoftMicrosoft Edge (Chromium-based) in IE Mode on Windows 10 Version 1909 for ARM64-based Systemsunspecifiedaffected
MicrosoftMicrosoft Edge (Chromium-based) in IE Mode on Windows 7 for x64-based Systems Service Pack 1unspecifiedaffected
MicrosoftMicrosoft Edge (Chromium-based) in IE Mode on Windows Server 2012unspecifiedaffected
MicrosoftMicrosoft Edge (Chromium-based) in IE Mode on Windows Server 2008 R2 for x64-based Systems Service Pack 1unspecifiedaffected
MicrosoftMicrosoft Edge (Chromium-based) in IE Mode on Windows 10 Version 1607 for 32-bit Systemsunspecifiedaffected
MicrosoftMicrosoft Edge (Chromium-based) in IE Mode on Windows 8.1 for 32-bit systemsunspecifiedaffected
MicrosoftMicrosoft Edge (Chromium-based) in IE Mode on Windows Server 2016unspecifiedaffected
MicrosoftMicrosoft Edge (Chromium-based) in IE Mode on Windows 10 Version 1709 for ARM64-based Systemsunspecifiedaffected
MicrosoftMicrosoft Edge (Chromium-based) in IE Mode on Windows 10 Version 1709 for 32-bit Systemsunspecifiedaffected
MicrosoftMicrosoft Edge (Chromium-based) in IE Mode on Windows 8.1 for x64-based systemsunspecifiedaffected
MicrosoftMicrosoft Edge (Chromium-based) in IE Mode on Windows 10 for x64-based Systemsunspecifiedaffected
MicrosoftMicrosoft Edge (Chromium-based) in IE Mode on Windows 10 for 32-bit Systemsunspecifiedaffected
MicrosoftMicrosoft Edge (Chromium-based) in IE Mode on Windows 7 for 32-bit Systems Service Pack 1unspecifiedaffected

Weaknesses

  • Spoofing

ADP Enrichment

CVE Program Container

Additional References

References