Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2017-0210
HistoryApr 12, 2017 - 2:59 p.m.

CVE-2017-0210

2017-04-1214:59:01
[email protected]
web.nvd.nist.gov

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

5

Confidence

High

EPSS

0.022

Percentile

89.5%

JSON

An elevation of privilege vulnerability exists when Internet Explorer does not properly enforce cross-domain policies, which could allow an attacker to access information from one domain and inject it into another domain, aka “Internet Explorer Elevation of Privilege Vulnerability.”

Affected configurations

NVD
Node
microsoftinternet_explorerMatch10
AND
microsoftwindows_server_2012Match-
Node
microsoftinternet_explorerMatch11-
AND
microsoftwindows_10_1507Match-
OR
microsoftwindows_10_1511Match-
OR
microsoftwindows_10_1607Match-
OR
microsoftwindows_10_1703Match-
OR
microsoftwindows_7Match-sp1
OR
microsoftwindows_8.1Match-
OR
microsoftwindows_rt_8.1Match-
OR
microsoftwindows_server_2008Matchr2sp1x64
OR
microsoftwindows_server_2012Matchr2
OR
microsoftwindows_server_2016Match-

Related

cisa_kev 1
mscve 1
attackerkb 1
cve 1
checkpoint_advisories 1
symantec 1
prion 1
cvelist 1
thn 1
nessus 6
mskb 8
kaspersky 1
threatpost 1
openvas 7
cisa_kev
cisa_kev
Microsoft Internet Explorer Privilege Escalation Vulnerability
2022-05-24 00:00:00
mscve
mscve
Internet Explorer Elevation of Privilege Vulnerability
2017-04-11 07:00:00
attackerkb
attackerkb
CVE-2017-0210
2017-04-12 00:00:00
cve
cve
CVE-2017-0210
2017-04-12 14:59:01
checkpoint_advisories
checkpoint_advisories
Microsoft Internet Explorer Elevation of Privilege (CVE-2017-0210)
2017-04-11 00:00:00
symantec
symantec
Microsoft Internet Explorer CVE-2017-0210 Remote Privilege Escalation Vulnerability
2017-04-11 00:00:00
prion
prion
Privilege escalation
2017-04-12 14:59:00
cvelist
cvelist
CVE-2017-0210
2017-04-12 14:00:00
thn
thn
Microsoft Issues Patches for Actively Exploited Critical Vulnerabilities
2017-04-11 23:22:00
nessus
nessus
Security Updates for Internet Explorer (April 2017)
2017-11-30 00:00:00
Windows 7 and Windows 2008 R2 April 2017 Security Updates (Petya)
2017-04-12 00:00:00
Windows Server 2012 April 2017 Security Updates (Petya)
2017-04-11 00:00:00
mskb
mskb
Cumulative security update for Internet Explorer: April 11, 2017
2017-04-11 07:00:00
April 11, 2017—KB4015549 (Monthly Rollup)
2017-04-11 07:00:00
April 11, 2017—KB4015551 (Monthly Rollup)
2017-04-11 07:00:00
kaspersky
kaspersky
KLA11058 Multiple vulnerabilities in Microsoft Edge and Internet Explorer
2017-04-11 00:00:00
threatpost
threatpost
Microsoft Patches Three Vulnerabilities Under Attack
2017-04-11 18:19:52
openvas
openvas
Microsoft Windows Monthly Rollup (KB4015549)
2017-04-12 00:00:00
Microsoft Windows Monthly Rollup (KB4015551)
2017-04-12 00:00:00
Microsoft Windows Monthly Rollup (KB4015550)
2017-04-12 00:00:00

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

5

Confidence

High

EPSS

0.022

Percentile

89.5%

JSON
Related for NVD:CVE-2017-0210
cisa_kev1mscve1attackerkb1cve1checkpoint_advisories1symantec1prion1cvelist1thn1nessus6mskb8kaspersky1threatpost1openvas7