Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2017-0210
HistoryApr 12, 2017 - 2:59 p.m.

CVE-2017-0210

2017-04-1214:59:00
NVD-CWE-noinfo
[email protected]
web.nvd.nist.gov
851
In Wild
cve-2017-0210
elevation of privilege
internet explorer
cross-domain policies
security vulnerability

4.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

4.7 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.004 Low

EPSS

Percentile

73.2%

JSON

An elevation of privilege vulnerability exists when Internet Explorer does not properly enforce cross-domain policies, which could allow an attacker to access information from one domain and inject it into another domain, aka “Internet Explorer Elevation of Privilege Vulnerability.”

VendorProductVersionCPE
microsoftinternet_explorer*cpe:2.3:a:microsoft:internet_explorer:*:*:*:*:*:*:*:*

Related

attackerkb 1
cisa_kev 1
mscve 1
checkpoint_advisories 1
symantec 1
prion 1
thn 1
nessus 6
mskb 8
kaspersky 1
threatpost 1
openvas 7
attackerkb
attackerkb
CVE-2017-0210
2017-04-12 00:00:00
cisa_kev
cisa_kev
Microsoft Internet Explorer Privilege Escalation Vulnerability
2022-05-24 00:00:00
mscve
mscve
Internet Explorer Elevation of Privilege Vulnerability
2017-04-11 07:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Internet Explorer Elevation of Privilege (CVE-2017-0210)
2017-04-11 00:00:00
symantec
symantec
Microsoft Internet Explorer CVE-2017-0210 Remote Privilege Escalation Vulnerability
2017-04-11 00:00:00
prion
prion
Privilege escalation
2017-04-12 14:59:00
thn
thn
Microsoft Issues Patches for Actively Exploited Critical Vulnerabilities
2017-04-11 23:22:00
nessus
nessus
Security Updates for Internet Explorer (April 2017)
2017-11-30 00:00:00
Windows 7 and Windows 2008 R2 April 2017 Security Updates (Petya)
2017-04-12 00:00:00
Windows Server 2012 April 2017 Security Updates (Petya)
2017-04-11 00:00:00
mskb
mskb
Cumulative security update for Internet Explorer: April 11, 2017
2017-04-11 07:00:00
April 11, 2017—KB4015549 (Monthly Rollup)
2017-04-11 07:00:00
April 11, 2017—KB4015551 (Monthly Rollup)
2017-04-11 07:00:00
kaspersky
kaspersky
KLA11058 Multiple vulnerabilities in Microsoft Edge and Internet Explorer
2017-04-11 00:00:00
threatpost
threatpost
Microsoft Patches Three Vulnerabilities Under Attack
2017-04-11 18:19:52
openvas
openvas
Microsoft Windows Monthly Rollup (KB4015549)
2017-04-12 00:00:00
Microsoft Windows Monthly Rollup (KB4015551)
2017-04-12 00:00:00
Microsoft Windows Monthly Rollup (KB4015550)
2017-04-12 00:00:00

4.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

4.7 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.004 Low

EPSS

Percentile

73.2%

JSON
Related for CVE-2017-0210
attackerkb1cisa_kev1mscve1checkpoint_advisories1symantec1prion1thn1nessus6mskb8kaspersky1threatpost1openvas7