Microsoft Internet Explorer Information Disclosure Vulnerability

Technical Severity

MEDIUM

4.3 / 10

Minimal Risk Critical

Vector Specification

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

Exploitation Likelihood

83.91 %

Predictive Probability

Percentile Rank

99.3 th

Documented as more likely to be exploited than 99.3% of known CVEs.

Detection Date

Mar 28, 2022

Remediation Due

Apr 18, 2022

CISA Catalog Active

Threat Analysis

Microsoft Internet Explorer allow remote attackers to obtain sensitive information from process memory via a crafted web site.

Apply updates per vendor instructions.

National Vulnerability Database

https://nvd.nist.gov/vuln/detail/CVE-2017-0059