8.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
7.6 High
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
0.958 High
EPSS
Percentile
99.4%
08/08/2017
Critical
Multiple serious vulnerabilities have been found in Microsoft Internet Explorer and Microsoft Edge. Malicious users can exploit these vulnerabilities to gain privileges, bypass security restrictions, execute arbitrary code and obtain sensitive information.
Microsoft Internet Explorer versions 9 through 11
Microsoft Edge
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
CVE-2017-8647
CVE-2017-8646
CVE-2017-8645
CVE-2017-8644
CVE-2017-8625
CVE-2017-8642
CVE-2017-8641
CVE-2017-8640
CVE-2017-8669
CVE-2017-8661
CVE-2017-8662
CVE-2017-8503
CVE-2017-8638
CVE-2017-8639
CVE-2017-8636
CVE-2017-8637
CVE-2017-8634
CVE-2017-8635
CVE-2017-8655
CVE-2017-8656
CVE-2017-8657
CVE-2017-8650
CVE-2017-8651
CVE-2017-8652
CVE-2017-8653
CVE-2017-8672
CVE-2017-8670
CVE-2017-8671
CVE-2017-8659
CVE-2017-8674
CVE-2017-8503
CVE-2017-8634
CVE-2017-8635
CVE-2017-8636
CVE-2017-8637
CVE-2017-8638
CVE-2017-8639
CVE-2017-8640
CVE-2017-8641
CVE-2017-8642
CVE-2017-8644
CVE-2017-8645
CVE-2017-8646
CVE-2017-8647
CVE-2017-8651
CVE-2017-8652
CVE-2017-8653
CVE-2017-8655
CVE-2017-8656
CVE-2017-8657
CVE-2017-8659
CVE-2017-8661
CVE-2017-8662
CVE-2017-8669
CVE-2017-8670
CVE-2017-8671
CVE-2017-8672
CVE-2017-8674
ACE
CVE-2017-85034.6Warning
CVE-2017-86256.8High
CVE-2017-86347.6Critical
CVE-2017-86357.6Critical
CVE-2017-86367.6Critical
CVE-2017-86372.6Warning
CVE-2017-86387.6Critical
CVE-2017-86397.6Critical
CVE-2017-86407.6Critical
CVE-2017-86417.6Critical
CVE-2017-86424.3Warning
CVE-2017-86444.3Warning
CVE-2017-86457.6Critical
CVE-2017-86467.6Critical
CVE-2017-86477.6Critical
CVE-2017-86505.8High
CVE-2017-86517.6Critical
CVE-2017-86524.3Warning
CVE-2017-86537.6Critical
CVE-2017-86557.6Critical
CVE-2017-86567.6Critical
CVE-2017-86577.6Critical
CVE-2017-86594.3Warning
CVE-2017-86617.6Critical
CVE-2017-86624.3Warning
CVE-2017-86697.6Critical
CVE-2017-86707.6Critical
CVE-2017-86717.6Critical
CVE-2017-86727.6Critical
CVE-2017-86747.6Critical
4034668
4034733
4034674
4034681
4034658
4034660
4034665
4034664
Public exploits exist for this vulnerability.
support.microsoft.com/kb/4034658
support.microsoft.com/kb/4034660
support.microsoft.com/kb/4034664
support.microsoft.com/kb/4034665
support.microsoft.com/kb/4034668
support.microsoft.com/kb/4034674
support.microsoft.com/kb/4034681
support.microsoft.com/kb/4034733
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8503
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8625
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8634
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8635
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8636
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8637
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8638
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8639
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8640
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8641
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8642
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8644
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8645
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8646
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8647
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8650
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8651
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8652
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8653
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8655
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8656
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8657
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8659
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8661
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8662
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8669
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8670
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8671
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8672
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8674
portal.msrc.microsoft.com/en-us/security-guidance
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8503
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8503
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8625
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8634
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8634
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8635
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8635
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8636
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8636
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8637
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8637
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8638
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8638
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8639
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8639
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8640
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8640
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8641
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8641
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8642
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8642
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8644
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8644
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8645
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8645
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8646
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8646
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8647
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8647
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8650
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8651
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8651
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8652
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8652
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8653
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8653
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8655
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8655
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8656
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8656
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8657
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8657
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8659
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8659
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8661
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8661
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8662
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8662
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8669
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8669
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8670
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8670
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8671
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8671
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8672
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8672
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8674
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8674
statistics.securelist.com/vulnerability-scan/month
threats.kaspersky.com/en/class/Exploit/
threats.kaspersky.com/en/product/Microsoft-Edge/
threats.kaspersky.com/en/product/Microsoft-Internet-Explorer/
8.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
7.6 High
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
0.958 High
EPSS
Percentile
99.4%