CVE-2016-3370
MEDIUMMicrosoft Edge - Information Disclosure
Title source: ruleDescription
The PDF library in Microsoft Edge, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold, 1511, and 1607 allows remote attackers to obtain sensitive information via a crafted web site, aka "PDF Library Information Disclosure Vulnerability," a different vulnerability than CVE-2016-3374.
References (4)
Scores
CVSS v3
6.5
EPSS
0.1886
EPSS Percentile
95.2%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Classification
CWE
CWE-200
Status
published
Affected Products (9)
n/a/n/a
microsoft/edge
microsoft/windows_10
microsoft/windows_10
microsoft/windows_10
microsoft/windows_8.1
microsoft/windows_rt_8.1
microsoft/windows_server_2012
microsoft/windows_server_2012
Timeline
Published
Sep 14, 2016
Tracked Since
Feb 18, 2026