New Search

Microsoft Edge Security Feature Bypass Vulnerability - CVE-2017-11863

oval:org.cisecurity:def:3632

Microsoft Edge in Microsoft Windows 10 Gold 1511 1607 1703 1709 Windows Server 2016 and Windows Server version 1709 allows an attacker to trick a user into loading a page containing malicious content due to how the Edge Content Security Policy (CSP) validates documents aka "Microsoft Edge Security Feature Bypass Vulnerability". This CVE ID is unique from CVE-2017-11872 and CVE-2017-11874.

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows 10
  • Microsoft Windows Server 2016
Class:
vulnerability
Reference(s):
  • CVE-2017-11863
Product(s):
  • Microsoft Edge