4 matches found
Security feature bypass
Microsoft Edge in Microsoft Windows 10 1607, 1703, and Windows Server 2016 allows an attacker to force the browser to send data that would otherwise be restricted to a destination website of the attacker's choice, due to how Microsoft Edge handles redirect requests, aka "Microsoft Edge Security...
CVE-2017-11863
Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to trick a user into loading a page containing malicious content, due to how the Edge Content Security Policy CSP validates documents, aka "Microsoft Edge...
CVE-2017-11863
Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to trick a user into loading a page containing malicious content, due to how the Edge Content Security Policy CSP validates documents, aka "Microsoft Edge...
CVE-2017-11863
Microsoft Edge in Windows 10 (Gold/1511/1607/1703/1709) and Windows Server 2016/1709 is affected by a vulnerability where Edge CSP validation can be bypassed, allowing an attacker to trick a user into loading a page with malicious content. Root cause: improper validation of CSP in Edge when loadi...