New Search

Microsoft Edge Security Feature Bypass Vulnerability - CVE-2017-8754

oval:org.cisecurity:def:3208

Microsoft Edge in Microsoft Windows 10 Gold 1511 1607 1703 and Windows Server 2016 allows an attacker to trick a user into loading a page containing malicious content due to the way that the Edge Content Security Policy (CSP) validates certain specially crafted documents aka "Microsoft Edge Security Feature Bypass Vulnerability". This CVE ID is unique from CVE-2017-8723.

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows 10
  • Microsoft Windows Server 2016
Class:
vulnerability
Reference(s):
  • CVE-2017-8754
Product(s):
  • Microsoft Edge