Microsoft Edge in Windows 10 1607 and 1703, and Windows Server 2016 allows an attacker to read the URL of a cross-origin request when the Microsoft Edge Fetch API incorrectly handles a filtered response type, aka "Microsoft Edge Information Disclosure Vulnerability". This CVE ID is unique from CVE-2017-8498.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: microsoft

Published: 2017-06-15T01:00:00

Updated: 2024-08-05T16:34:23.300Z

Reserved: 2017-05-03T00:00:00

Link: CVE-2017-8504

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2017-06-15T01:29:03.693

Modified: 2017-06-21T14:32:39.467

Link: CVE-2017-8504

cve-icon Redhat

No data.