8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
7.6 High
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
0.961 High
EPSS
Percentile
99.5%
09/13/2016
Critical
Multiple serious vulnerabilities have been found in Microsoft Edge and Internet Explorer. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions or obtain sensitive information.
Microsoft Internet Explorer versions from 9 through 11
Microsoft Edge
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
CVE-2016-3247
CVE-2016-3291
CVE-2016-3292
CVE-2016-3294
CVE-2016-3295
CVE-2016-3370
CVE-2016-3374
CVE-2016-3324
CVE-2016-3375
CVE-2016-3330
CVE-2016-3325
CVE-2016-3297
CVE-2016-3350
CVE-2016-3351
CVE-2016-3353
CVE-2016-3377
ACE
CVE-2016-32475.1High
CVE-2016-32912.6Warning
CVE-2016-32925.1High
CVE-2016-32947.6Critical
CVE-2016-32955.1High
CVE-2016-33704.3Warning
CVE-2016-33744.3Warning
CVE-2016-33246.8High
CVE-2016-33757.6Critical
CVE-2016-33307.6Critical
CVE-2016-33252.6Warning
CVE-2016-32976.8High
CVE-2016-33507.6Critical
CVE-2016-33512.6Warning
CVE-2016-33535.1High
CVE-2016-33777.6Critical
3185611
3185614
3189866
3185319
Public exploits exist for this vulnerability.
support.microsoft.com/kb/3185319
support.microsoft.com/kb/3185611
support.microsoft.com/kb/3185614
support.microsoft.com/kb/3189866
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3247
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3291
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3292
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3294
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3295
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3297
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3324
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3325
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3330
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3350
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3351
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3353
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3370
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3374
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3375
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3377
portal.msrc.microsoft.com/en-us/security-guidance
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2016-3247
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2016-3291
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2016-3292
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2016-3294
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2016-3295
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2016-3297
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2016-3324
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2016-3325
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2016-3330
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2016-3350
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2016-3351
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2016-3353
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2016-3370
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2016-3374
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2016-3375
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2016-3377
statistics.securelist.com/vulnerability-scan/month
threats.kaspersky.com/en/product/Microsoft-Edge/
threats.kaspersky.com/en/product/Microsoft-Internet-Explorer/
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
7.6 High
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
0.961 High
EPSS
Percentile
99.5%