CVE-2018-8358 - A security feature bypass vulnerability exists when Microsoft Edge improperly handles redirect reque

CVE-2018-8358

Summary

A security feature bypass vulnerability exists when Microsoft Edge improperly handles redirect requests, aka "Microsoft Edge Security Feature Bypass Vulnerability." This affects Microsoft Edge.

References

http://www.securityfocus.com/bid/105017
http://www.securitytracker.com/id/1041457
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8358

Vulnerable Configurations

cpe:2.3:a:microsoft:edge:-:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:edge:-:*:*:*:*:*:*:*

CVSS

Base:	4.3 (as of 03-10-2019 - 00:03)
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	NONE	NONE

cvss-vector via4

AV:N/AC:M/Au:N/C:P/I:N/A:N

refmap via4

bid	105017
confirm	https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8358
sectrack	1041457

Last major update

03-10-2019 - 00:03

Published

15-08-2018 - 17:29

Last modified

03-10-2019 - 00:03