7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
7.6 High
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
0.965 High
EPSS
Percentile
99.6%
07/10/2018
Critical
Multiple vulnerabilities were found in Microsoft Edge and Internet Explorer. Malicious users can exploit these vulnerabilities to spoof user interface, execute arbitrary code, obtain sensitive information, bypass security restrictions, gain privileges.
Internet Explorer 10
Internet Explorer 11
Microsoft Edge (EdgeHTML-based)
ChakraCore
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
CVE-2018-0949
CVE-2018-8278
CVE-2018-8242
CVE-2018-8286
CVE-2018-8279
CVE-2018-8324
CVE-2018-8294
CVE-2018-8296
CVE-2018-8297
CVE-2018-8262
CVE-2018-8125
CVE-2018-8276
CVE-2018-8280
CVE-2018-8290
CVE-2018-8274
CVE-2018-8325
CVE-2018-8301
CVE-2018-8289
CVE-2018-8288
CVE-2018-8291
CVE-2018-8275
CVE-2018-8287
CVE-2018-8298
CVE-2018-8283
ACE
CVE-2018-09494.3Warning
CVE-2018-82785.8High
CVE-2018-82427.6Critical
CVE-2018-82867.6Critical
CVE-2018-82797.6Critical
CVE-2018-83244.3Warning
CVE-2018-82947.6Critical
CVE-2018-82967.6Critical
CVE-2018-82974.3Warning
CVE-2018-82627.6Critical
CVE-2018-81257.6Critical
CVE-2018-82764.3Warning
CVE-2018-82807.6Critical
CVE-2018-82907.6Critical
CVE-2018-82747.6Critical
CVE-2018-83254.3Warning
CVE-2018-83017.6Critical
CVE-2018-82894.3Warning
CVE-2018-82887.6Critical
CVE-2018-82917.6Critical
CVE-2018-82757.6Critical
CVE-2018-82877.6Critical
CVE-2018-82987.6Critical
CVE-2018-82837.6Critical
4338830
4338815
4338825
4338814
4338818
4338829
4338819
4338826
4345421
4345419
4338816
4345455
4338831
4345459
4345420
4345424
4338821
4345425
4345418
4339093
Public exploits exist for this vulnerability.
support.microsoft.com/kb/4338814
support.microsoft.com/kb/4338815
support.microsoft.com/kb/4338816
support.microsoft.com/kb/4338818
support.microsoft.com/kb/4338819
support.microsoft.com/kb/4338821
support.microsoft.com/kb/4338825
support.microsoft.com/kb/4338826
support.microsoft.com/kb/4338829
support.microsoft.com/kb/4338830
support.microsoft.com/kb/4338831
support.microsoft.com/kb/4339093
support.microsoft.com/kb/4345418
support.microsoft.com/kb/4345419
support.microsoft.com/kb/4345420
support.microsoft.com/kb/4345421
support.microsoft.com/kb/4345424
support.microsoft.com/kb/4345425
support.microsoft.com/kb/4345455
support.microsoft.com/kb/4345459
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0949
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8125
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8242
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8262
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8274
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8275
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8276
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8278
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8279
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8280
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8283
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8286
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8287
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8288
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8289
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8290
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8291
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8294
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8296
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8297
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8298
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8301
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8324
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8325
msrc.microsoft.com/update-guide/vulnerability/CVE-2018-0949
msrc.microsoft.com/update-guide/vulnerability/CVE-2018-8125
msrc.microsoft.com/update-guide/vulnerability/CVE-2018-8242
msrc.microsoft.com/update-guide/vulnerability/CVE-2018-8262
msrc.microsoft.com/update-guide/vulnerability/CVE-2018-8274
msrc.microsoft.com/update-guide/vulnerability/CVE-2018-8275
msrc.microsoft.com/update-guide/vulnerability/CVE-2018-8276
msrc.microsoft.com/update-guide/vulnerability/CVE-2018-8278
msrc.microsoft.com/update-guide/vulnerability/CVE-2018-8279
msrc.microsoft.com/update-guide/vulnerability/CVE-2018-8280
msrc.microsoft.com/update-guide/vulnerability/CVE-2018-8283
msrc.microsoft.com/update-guide/vulnerability/CVE-2018-8286
msrc.microsoft.com/update-guide/vulnerability/CVE-2018-8287
msrc.microsoft.com/update-guide/vulnerability/CVE-2018-8288
msrc.microsoft.com/update-guide/vulnerability/CVE-2018-8289
msrc.microsoft.com/update-guide/vulnerability/CVE-2018-8290
msrc.microsoft.com/update-guide/vulnerability/CVE-2018-8291
msrc.microsoft.com/update-guide/vulnerability/CVE-2018-8294
msrc.microsoft.com/update-guide/vulnerability/CVE-2018-8296
msrc.microsoft.com/update-guide/vulnerability/CVE-2018-8297
msrc.microsoft.com/update-guide/vulnerability/CVE-2018-8298
msrc.microsoft.com/update-guide/vulnerability/CVE-2018-8301
msrc.microsoft.com/update-guide/vulnerability/CVE-2018-8324
msrc.microsoft.com/update-guide/vulnerability/CVE-2018-8325
portal.msrc.microsoft.com/en-us/security-guidance
statistics.securelist.com/vulnerability-scan/month
threats.kaspersky.com/en/class/Exploit/
threats.kaspersky.com/en/product/ChakraCore/
threats.kaspersky.com/en/product/Microsoft-Edge/
threats.kaspersky.com/en/product/Microsoft-Internet-Explorer/
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
7.6 High
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
0.965 High
EPSS
Percentile
99.6%