An elevation of privilege vulnerability exists when Internet Explorer does not properly enforce cross-domain policies, which could allow an attacker to access information from one domain and inject it into another domain, aka "Internet Explorer Elevation of Privilege Vulnerability."
2017-04-12T14:59:01.420
2025-04-20T01:37:25.860
Deferred
CVSSv3.1: 8.8 (HIGH)
AV:N/AC:M/Au:N/C:N/I:P/A:N
8.6
2.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | microsoft | internet_explorer | 10 | Yes |
| Operating System | microsoft | windows_server_2012 | - | No |
| Application | microsoft | internet_explorer | 11 | Yes |
| Operating System | microsoft | windows_10_1507 | - | No |
| Operating System | microsoft | windows_10_1511 | - | No |
| Operating System | microsoft | windows_10_1607 | - | No |
| Operating System | microsoft | windows_10_1703 | - | No |
| Operating System | microsoft | windows_7 | - | No |
| Operating System | microsoft | windows_8.1 | - | No |
| Operating System | microsoft | windows_rt_8.1 | - | No |
| Operating System | microsoft | windows_server_2008 | r2 | No |
| Operating System | microsoft | windows_server_2012 | r2 | No |
| Operating System | microsoft | windows_server_2016 | - | No |