BROWSER-IE Microsoft Edge Data URI same origin policy bypass attempt
The RegEx class in the XSS filter in Microsoft Edge allows remote attackers to conduct cross-site scripting (XSS) attacks and obtain sensitive information via unspecified vectors, aka "Microsoft Edge Information Disclosure Vulnerability." This vulnerability is different from those described in CVE-2017-0009, CVE-2017-0011, CVE-2017-0065, and CVE-2017-0068.
CVSS base score 6.1 CVSS impact score 2.7 CVSS exploitability score 2.8 confidentialityImpact LOW integrityImpact LOW availabilityImpact LOW
None known
None known
Upgrade to the latest non-affected version of the software.
Apply the appropriate vendor supplied patches.