Microsoft Edge in Windows 10 1607 and 1703, and Windows Server 2016 allows an attacker to read data not intended to be disclosed when Edge allows JavaScript XML DOM objects to detect installed browser extensions, aka âMicrosoft Edge Information Disclosure Vulnerabilityâ. This CVE ID is unique from CVE-2017-8504.
[
{
"product": "Microsoft Edge",
"vendor": "Microsoft Corporation",
"versions": [
{
"status": "affected",
"version": "Microsoft Windows 10 1607 and 1703, and Windows Server 2016."
}
]
}
]