CVE-2018-1021 - An information disclosure vulnerability exists when Microsoft Edge improperly handles objects in mem

CVE-2018-1021

Summary

An information disclosure vulnerability exists when Microsoft Edge improperly handles objects in memory, aka "Microsoft Edge Information Disclosure Vulnerability." This affects Microsoft Edge. This CVE ID is unique from CVE-2018-8123.

References

http://www.securityfocus.com/bid/103964
http://www.securitytracker.com/id/1040844
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-1021

Vulnerable Configurations

cpe:2.3:a:microsoft:edge:-:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:edge:-:*:*:*:*:*:*:*

CVSS

Base:	4.3 (as of 24-08-2020 - 17:37)
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	NONE	NONE

cvss-vector via4

AV:N/AC:M/Au:N/C:P/I:N/A:N

refmap via4

bid	103964
confirm	https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-1021
sectrack	1040844

Last major update

24-08-2020 - 17:37

Published

09-05-2018 - 19:29

Last modified

24-08-2020 - 17:37