BROWSER-IE Microsoft Edge iframe cross-site scripting attempt
Microsoft Edge allows remote attackers to bypass the Same Origin Policy via unspecified vectors, aka "Microsoft Edge Elevation of Privilege Vulnerability," a different vulnerability than CVE-2016-0161.
CVSS base score 6.5 CVSS impact score 3.6 CVSS exploitability score 2.8 confidentialityImpact NONE integrityImpact HIGH availabilityImpact HIGH
CVE-2016-0158:
CVSS base score 6.5
CVSS impact score 3.6
CVSS exploitability score 2.8
Confidentiality Impact NONE
Integrity Impact HIGH
Availability Impact NONE
CVE-2016-0158: Microsoft Edge allows remote attackers to bypass the Same Origin Policy via unspecified vectors, aka "Microsoft Edge Elevation of Privilege Vulnerability," a different vulnerability than CVE-2016-0161.
CVE-2016-0158:
Access Vector
Access Complexity
Authentication
None known
None known
Upgrade to the latest non-affected version of the software.
Apply the appropriate vendor supplied patches.