7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
8.2 High
AI Score
Confidence
High
9.3 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.956 High
EPSS
Percentile
99.4%
Multiple serious vulnerabilities have been found in Microsoft Internet Explorer and Edge. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information or gain privileges.
Below is a complete list of vulnerabilities
Public exploits exist for this vulnerability.
CVE-2016-3331 critical
CVE-2016-3298 warning
CVE-2016-3267 warning
CVE-2016-3392 warning
CVE-2016-3391 warning
CVE-2016-3390 critical
CVE-2016-3389 critical
CVE-2016-3388 warning
CVE-2016-3387 high
CVE-2016-3386 critical
CVE-2016-3385 critical
CVE-2016-3384 critical
CVE-2016-3383 critical
CVE-2016-3382 critical
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.
Obtain sensitive information. Exploitation of vulnerabilities with this impact can lead to capturing by abuser information, critical for user or system.
Security bypass. Exploitation of vulnerabilities with this impact can lead to performing actions restricted by current security settings.
Privilege escalation. Exploitation of vulnerabilities with this impact can lead to performing by abuser actions, which are normally disallowed for current role.
Spoof user interface. Exploitation of vulnerabilities with this impact can lead to changes in user interface to beguile user into inaccurate behavior.
support.microsoft.com/kb/3185330
support.microsoft.com/kb/3185331
support.microsoft.com/kb/3185332
support.microsoft.com/kb/3192391
support.microsoft.com/kb/3192392
support.microsoft.com/kb/3192393
support.microsoft.com/kb/3192440
support.microsoft.com/kb/3192441
support.microsoft.com/kb/3194798
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2016-3267
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2016-3298
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2016-3331
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2016-3382
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2016-3383
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2016-3384
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2016-3385
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2016-3386
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2016-3387
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2016-3388
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2016-3389
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2016-3390
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2016-3391
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2016-3392
statistics.securelist.com/
threats.kaspersky.com/en/product/Microsoft-Edge/
threats.kaspersky.com/en/product/Microsoft-Internet-Explorer/
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
8.2 High
AI Score
Confidence
High
9.3 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.956 High
EPSS
Percentile
99.4%