CVE-2018-8512 Information

Description

A security feature bypass vulnerability exists in Microsoft Edge when the Edge Content Security Policy (CSP) fails to properly validate certain specially crafted documents aka \Microsoft Edge Security Feature Bypass Vulnerability.\ This affects Microsoft Edge. This CVE ID is unique from CVE-2018-8530.

CVSS Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

Reference

http://www.securityfocus.com/bid/105486 http://www.securitytracker.com/id/1041825 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8512

Attack Complexity

LOW

Privileges Required

NONE

User Interaction Required

NONE

Scope

REQUIRED

Confidentiality Impact

UNCHANGED

Integrity Impact

LOW

Availability Impact

LOW

Base Score

NONE

Base Severity

5.4