threat
engine
.sh
Back
·
··:··
Home
/
Product
/
microsoft internet explorer
Product
microsoft internet explorer
500 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2021-26419
all versions
Scripting Engine Memory Corruption Vulnerability
7.5
HIGH
CVE-2021-27085
all versions
Internet Explorer Remote Code Execution Vulnerability
8.8
HIGH
CVE-2021-26411
all versions
Internet Explorer Memory Corruption Vulnerability
8.8
HIGH
CVE-2020-17058
all versions
Microsoft Browser Memory Corruption Vulnerability
7.5
HIGH
CVE-2020-17053
all versions
Internet Explorer Memory Corruption Vulnerability
7.5
HIGH
CVE-2020-17052
all versions
Scripting Engine Memory Corruption Vulnerability
7.5
HIGH
CVE-2020-1506
all versions
<p>An elevation of privilege vulnerability exists in the way that the Wininit.dll handles objects in memory. An attacker who succe
6.1
MEDIUM
CVE-2020-1012
all versions
<p>An elevation of privilege vulnerability exists in the way that the Wininit.dll handles objects in memory. An attacker who succe
8.8
HIGH
CVE-2020-0878
all versions
<p>A remote code execution vulnerability exists in the way that Microsoft browsers access objects in memory. The vulnerability cou
4.2
MEDIUM
CVE-2020-1570
all versions
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer.
7.5
HIGH
CVE-2020-1567
all versions
A remote code execution vulnerability exists in the way that the MSHTML engine improperly validates input. An attacker could execu
4.2
MEDIUM
CVE-2020-1380
all versions
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer.
7.8
HIGH
CVE-2020-1432
all versions
An information disclosure vulnerability exists when Skype for Business is accessed via Internet Explorer, aka 'Skype for Business
4.3
MEDIUM
CVE-2020-1403
all versions
A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'VBScript Remote C
7.5
HIGH
CVE-2020-1315
all versions
An information disclosure vulnerability exists when Internet Explorer improperly handles objects in memory, aka 'Internet Explorer
5.3
MEDIUM
CVE-2020-1260
all versions
A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'VBScript Remote C
7.5
HIGH
CVE-2020-1230
all versions
A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'VBScript Remote C
7.5
HIGH
CVE-2020-1219
all versions
A remote code execution vulnerability exists in the way that Microsoft browsers access objects in memory, aka 'Microsoft Browser M
7.5
HIGH
CVE-2020-1216
all versions
A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'VBScript Remote C
7.5
HIGH
CVE-2020-1215
all versions
A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'VBScript Remote C
7.5
HIGH
CVE-2020-1214
all versions
A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'VBScript Remote C
7.5
HIGH
CVE-2020-1213
all versions
A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'VBScript Remote C
7.5
HIGH
CVE-2020-1093
all versions
A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'VBScript Remote C
7.5
HIGH
CVE-2020-1092
all versions
A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka 'Internet Explorer
7.5
HIGH
CVE-2020-1064
all versions
A remote code execution vulnerability exists in the way that the MSHTML engine improperly validates input.An attacker could execut
7.5
HIGH
CVE-2020-1062
all versions
A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka 'Internet Explorer
7.5
HIGH
CVE-2020-1060
all versions
A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'VBScript Remote C
7.5
HIGH
CVE-2020-1058
all versions
A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'VBScript Remote C
7.5
HIGH
CVE-2020-1035
all versions
A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'VBScript Remote C
7.5
HIGH
CVE-2020-0968
all versions
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer,
7.5
HIGH
CVE-2020-0967
all versions
A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'VBScript Remote C
8.8
HIGH
CVE-2020-0966
all versions
A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'VBScript Remote C
8.8
HIGH
CVE-2020-0895
all versions
A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'Windows VBScript
7.5
HIGH
CVE-2009-5159
all versions
Invision Power Board (aka IPB or IP.Board) 2.x through 3.0.4, when Internet Explorer 5 is used, allows XSS via a .txt attachment.
6.1
MEDIUM
CVE-2020-0847
all versions
A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'VBScript Remote C
7.5
HIGH
CVE-2020-0833
all versions
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer,
7.5
HIGH
CVE-2020-0832
all versions
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer,
7.5
HIGH
CVE-2020-0830
all versions
A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka
7.5
HIGH
CVE-2020-0824
all versions
A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka 'Internet Explorer
7.5
HIGH
CVE-2020-0768
all versions
A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka
7.5
HIGH
CVE-2020-0706
all versions
An information disclosure vulnerability exists in the way that affected Microsoft browsers handle cross-origin requests, aka 'Micr
4.3
MEDIUM
CVE-2020-0674
all versions
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer,
7.5
HIGH
CVE-2020-0673
all versions
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer,
7.5
HIGH
CVE-2020-0640
all versions
A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka 'Internet Explorer
7.5
HIGH
CVE-2019-1485
all versions
A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'VBScript Remote C
7.5
HIGH
CVE-2019-1429
all versions
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer,
7.5
HIGH
CVE-2019-1390
all versions
A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'VBScript Remote C
7.5
HIGH
CVE-2019-1371
all versions
A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka 'Internet Explorer
7.5
HIGH
CVE-2019-1357
all versions
A spoofing vulnerability exists when Microsoft Browsers improperly handle browser cookies, aka 'Microsoft Browser Spoofing Vulnera
4.3
MEDIUM
CVE-2019-1239
all versions
A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'VBScript Remote C
7.5
HIGH
CVE-2019-1238
all versions
A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'VBScript Remote C
6.4
MEDIUM
CVE-2019-0608
all versions
A spoofing vulnerability exists when Microsoft Browsers does not properly parse HTTP content, aka 'Microsoft Browser Spoofing Vuln
4.3
MEDIUM
CVE-2019-1367
all versions
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer,
7.5
HIGH
CVE-2019-1221
all versions
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer,
7.5
HIGH
CVE-2019-1220
all versions
A security feature bypass vulnerability exists when Microsoft Browsers fail to validate the correct Security Zone of requests for
4.3
MEDIUM
CVE-2019-1208
all versions
A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'VBScript Remote C
7.5
HIGH
CVE-2019-1194
all versions
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer.
7.5
HIGH
CVE-2019-1193
all versions
A remote code execution vulnerability exists in the way that Microsoft browsers access objects in memory. The vulnerability could
6.4
MEDIUM
CVE-2019-1192
all versions
A security feature bypass vulnerability exists when Microsoft browsers improperly handle requests of different origins. The vulner
4.3
MEDIUM
CVE-2019-1133
all versions
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer.
7.5
HIGH
CVE-2019-1104
all versions
A remote code execution vulnerability exists in the way that Microsoft browsers access objects in memory, aka 'Microsoft Browser M
7.5
HIGH
CVE-2019-1063
all versions
A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka 'Internet Explorer
7.5
HIGH
CVE-2019-1059
all versions
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer,
7.5
HIGH
CVE-2019-1056
all versions
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer,
7.5
HIGH
CVE-2019-1004
all versions
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer,
7.5
HIGH
CVE-2019-1001
all versions
A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka
7.5
HIGH
CVE-2019-1081
all versions
An information disclosure vulnerability exists when affected Microsoft browsers improperly handle objects in memory. An attacker w
4.2
MEDIUM
CVE-2019-1080
all versions
A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers. The
7.5
HIGH
CVE-2019-1055
all versions
A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers. The
7.5
HIGH
CVE-2019-1038
all versions
A remote code execution vulnerability exists in the way that Microsoft browsers access objects in memory. The vulnerability could
7.5
HIGH
CVE-2019-1005
all versions
A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers. The
7.5
HIGH
CVE-2019-0988
all versions
A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers. The
7.5
HIGH
CVE-2019-0920
all versions
A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers. The
4.3
MEDIUM
CVE-2019-0995
all versions
A security feature bypass vulnerability exists when urlmon.dll improperly handles certain Mark of the Web queries, aka 'Internet E
8.8
HIGH
CVE-2019-0940
all versions
A remote code execution vulnerability exists in the way that Microsoft browsers access objects in memory, aka 'Microsoft Browser M
7.5
HIGH
CVE-2019-0930
all versions
An information disclosure vulnerability exists when Internet Explorer improperly handles objects in memory, aka 'Internet Explorer
6.5
MEDIUM
CVE-2019-0929
all versions
A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka 'Internet Explorer
7.5
HIGH
CVE-2019-0921
all versions
An spoofing vulnerability exists when Internet Explorer improperly handles URLs, aka 'Internet Explorer Spoofing Vulnerability'.
6.5
MEDIUM
CVE-2019-0918
all versions
A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka
7.5
HIGH
CVE-2019-0911
all versions
A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka
7.5
HIGH
CVE-2019-0884
all versions
A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka
7.5
HIGH
CVE-2019-0862
all versions
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer,
7.5
HIGH
CVE-2019-0835
all versions
An information disclosure vulnerability exists when the scripting engine does not properly handle objects in memory, aka 'Microsof
6.5
MEDIUM
CVE-2019-0764
all versions
A tampering vulnerability exists when Microsoft browsers do not properly validate input under specific conditions, aka 'Microsoft
6.5
MEDIUM
CVE-2019-0753
all versions
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer,
7.5
HIGH
CVE-2019-0752
all versions
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer,
7.5
HIGH
CVE-2019-0783
all versions
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer,
7.5
HIGH
CVE-2019-0780
all versions
A remote code execution vulnerability exists in the way that Microsoft browsers access objects in memory, aka 'Microsoft Browser M
7.5
HIGH
CVE-2019-0768
all versions
A security feature bypass vulnerability exists when Internet Explorer VBScript execution policy does not properly restrict VBScrip
4.3
MEDIUM
CVE-2019-0763
all versions
A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka 'Internet Explorer
7.5
HIGH
CVE-2019-0762
all versions
A security feature bypass vulnerability exists when Microsoft browsers improperly handle requests of different origins, aka 'Micro
4.3
MEDIUM
CVE-2019-0761
all versions
A security feature bypass vulnerability exists when Internet Explorer fails to validate the correct Security Zone of requests for
6.5
MEDIUM
CVE-2019-0746
all versions
An information disclosure vulnerability exists when the scripting engine does not properly handle objects in memory in Microsoft E
6.5
MEDIUM
CVE-2019-0680
all versions
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer,
7.5
HIGH
CVE-2019-0667
all versions
A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'Windows VBScript
7.5
HIGH
CVE-2019-0666
all versions
A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'Windows VBScript
7.5
HIGH
CVE-2019-0665
all versions
A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'Windows VBScript
7.5
HIGH
CVE-2019-0639
all versions
A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka 'Scrip
7.5
HIGH
CVE-2019-0609
all versions
A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka
7.5
HIGH
CVE-2019-0676
all versions
An information disclosure vulnerability exists when Internet Explorer improperly handles objects in memory.An attacker who success
6.5
MEDIUM
CVE-2019-0654
all versions
A spoofing vulnerability exists when Microsoft browsers improperly handles specific redirects, aka 'Microsoft Browser Spoofing Vul
4.3
MEDIUM
CVE-2019-0606
all versions
A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka 'Internet Explorer
7.5
HIGH
CVE-2019-0541
all versions
A remote code execution vulnerability exists in the way that the MSHTML engine inproperly validates input, aka "MSHTML Engine Remo
8.8
HIGH
CVE-2018-8653
all versions
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer,
7.5
HIGH
CVE-2018-8643
all versions
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer,
7.5
HIGH
CVE-2018-8631
all versions
A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka "Internet Explorer
7.5
HIGH
CVE-2018-8625
all versions
A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka "Windows VBScript
7.5
HIGH
CVE-2018-8619
all versions
A remote code execution vulnerability exists when the Internet Explorer VBScript execution policy does not properly restrict VBScr
7.5
HIGH
CVE-2018-8570
all versions
A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka "Internet Explorer
7.5
HIGH
CVE-2018-8552
all versions
An information disclosure vulnerability exists when VBScript improperly discloses the contents of its memory, which could provide
7.5
HIGH
CVE-2018-8491
all versions
A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka "Internet Explorer
7.5
HIGH
CVE-2018-8460
all versions
A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka "Internet Explorer
7.5
HIGH
CVE-2018-8470
all versions
A security feature bypass vulnerability exists in Internet Explorer due to how scripts are handled that allows a universal cross-s
6.1
MEDIUM
CVE-2018-8461
all versions
A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka "Internet Explorer
7.5
HIGH
CVE-2018-8457
all versions
A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka
7.5
HIGH
CVE-2018-8452
all versions
An information disclosure vulnerability exists when the scripting engine does not properly handle objects in memory in Microsoft b
4.3
MEDIUM
CVE-2018-8447
all versions
A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka "Internet Explorer
7.5
HIGH
CVE-2018-8315
all versions
An information disclosure vulnerability exists when the browser scripting engine improperly handle object types, aka "Microsoft Sc
4.2
MEDIUM
CVE-2018-8403
all versions
A remote code execution vulnerability exists in the way that Microsoft browsers access objects in memory, aka "Microsoft Browser M
7.5
HIGH
CVE-2018-8389
all versions
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer,
7.5
HIGH
CVE-2018-8385
all versions
A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka
7.5
HIGH
CVE-2018-8373
all versions
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer,
7.5
HIGH
CVE-2018-8372
all versions
A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka
7.5
HIGH
CVE-2018-8371
all versions
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer,
7.5
HIGH
CVE-2018-8357
all versions
An elevation of privilege vulnerability exists in Microsoft browsers allowing sandbox escape, aka "Microsoft Browser Elevation of
8.3
HIGH
CVE-2018-8355
all versions
A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka
7.5
HIGH
CVE-2018-8353
all versions
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer,
7.5
HIGH
CVE-2018-8351
all versions
An information disclosure vulnerability exists when affected Microsoft browsers improperly allow cross-frame interaction, aka "Mic
6.5
MEDIUM
CVE-2018-8316
all versions
A remote code execution vulnerability exists when Internet Explorer improperly validates hyperlinks before loading executable libr
7.5
HIGH
CVE-2018-8296
all versions
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer,
7.5
HIGH
CVE-2018-8291
all versions
A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka
7.5
HIGH
CVE-2018-8288
all versions
A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka
7.5
HIGH
CVE-2018-8287
all versions
A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka
7.5
HIGH
CVE-2018-8242
all versions
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer,
7.5
HIGH
CVE-2018-0949
all versions
A security feature bypass vulnerability exists when Microsoft Internet Explorer improperly handles requests involving UNC resource
6.5
MEDIUM
CVE-2018-8267
all versions
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer,
7.5
HIGH
CVE-2018-8249
all versions
A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka "Internet Explorer
7.5
HIGH
CVE-2018-8113
all versions
A security feature bypass vulnerability exists in Internet Explorer that allows for bypassing Mark of the Web Tagging (MOTW), aka
6.5
MEDIUM
CVE-2018-0978
all versions
A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka "Internet Explorer
7.5
HIGH
CVE-2018-8178
all versions
A remote code execution vulnerability exists in the way that Microsoft browsers access objects in memory, aka "Microsoft Browser M
7.5
HIGH
CVE-2018-8145
all versions
An information disclosure vulnerability exists when Chakra improperly discloses the contents of its memory, which could provide an
7.5
HIGH
CVE-2018-8126
all versions
A security feature bypass vulnerability exists when Internet Explorer fails to validate User Mode Code Integrity (UMCI) policies,
8.8
HIGH
CVE-2018-8122
all versions
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer,
7.5
HIGH
CVE-2018-8114
all versions
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer,
7.5
HIGH
CVE-2018-1025
all versions
An information disclosure vulnerability exists when affected Microsoft browsers improperly handle objects in memory, aka "Microsof
4.3
MEDIUM
CVE-2018-1022
all versions
A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka
7.5
HIGH
CVE-2018-0955
all versions
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer,
7.5
HIGH
CVE-2018-0954
all versions
A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka
7.5
HIGH
CVE-2018-8118
all versions
A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka "Internet Explorer
7.5
HIGH
CVE-2018-1020
all versions
A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka "Internet Explorer
7.5
HIGH
CVE-2018-1018
all versions
A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka "Internet Explorer
7.5
HIGH
CVE-2018-1004
all versions
A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka "Windows VBScript
8.8
HIGH
CVE-2018-1001
all versions
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer,
7.5
HIGH
CVE-2018-1000
all versions
An information disclosure vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer
5.3
MEDIUM
CVE-2018-0997
all versions
A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka "Internet Explorer
7.5
HIGH
CVE-2018-0996
all versions
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer,
7.5
HIGH
CVE-2018-0991
all versions
A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka "Internet Explorer
7.5
HIGH
CVE-2018-0989
all versions
An information disclosure vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer
4.3
MEDIUM
CVE-2018-0988
all versions
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer,
7.5
HIGH
CVE-2018-0987
all versions
An information disclosure vulnerability exists when the scripting engine does not properly handle objects in memory in Internet Ex
4.3
MEDIUM
CVE-2018-0981
all versions
An information disclosure vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer
5.3
MEDIUM
CVE-2018-0870
all versions
A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka "Internet Explorer
7.5
HIGH
CVE-2018-0942
all versions
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2
2.6
LOW
CVE-2018-0935
all versions
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012
7.5
HIGH
CVE-2018-0932
all versions
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and
4.3
MEDIUM
CVE-2018-0929
all versions
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2
4.3
MEDIUM
CVE-2018-0927
all versions
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and
4.3
MEDIUM
CVE-2018-0891
all versions
ChakraCore, and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Wind
4.3
MEDIUM
CVE-2018-0889
all versions
Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the sc
7.5
HIGH
CVE-2018-0866
all versions
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012
7.5
HIGH
CVE-2018-0847
all versions
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and
4.3
MEDIUM
CVE-2018-0840
all versions
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and
7.5
HIGH
CVE-2014-8985
all versions
Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption)
7.5
HIGH
CVE-2014-4145
all versions
Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption)
7.5
HIGH
CVE-2014-4112
all versions
Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption)
7.5
HIGH
CVE-2014-4066
all versions
Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption)
7.5
HIGH
CVE-2018-0772
all versions
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012
7.5
HIGH
CVE-2018-0762
all versions
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012
7.5
HIGH
CVE-2017-11930
all versions
ChakraCore, and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows
7.5
HIGH
CVE-2017-11919
all versions
ChakraCore, and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows
5.3
MEDIUM
CVE-2017-11913
all versions
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012
7.5
HIGH
CVE-2017-11912
all versions
ChakraCore, and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Wind
7.5
HIGH
CVE-2017-11907
all versions
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012
7.5
HIGH
CVE-2017-11906
all versions
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012
5.3
MEDIUM
CVE-2017-11903
all versions
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012
7.5
HIGH
CVE-2017-11901
all versions
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and
7.5
HIGH
CVE-2017-11895
all versions
ChakraCore, and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows
7.5
HIGH
CVE-2017-11894
all versions
ChakraCore, and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Wind
7.5
HIGH
CVE-2017-11890
all versions
Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Go
7.5
HIGH
CVE-2017-11887
all versions
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2
5.3
MEDIUM
CVE-2017-11886
all versions
Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Go
7.5
HIGH
CVE-2017-11869
all versions
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012
7.5
HIGH
CVE-2017-11858
all versions
ChakraCore and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windo
7.5
HIGH
CVE-2017-11856
all versions
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2
7.5
HIGH
CVE-2017-11855
all versions
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2
7.5
HIGH
CVE-2017-11848
all versions
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 SP2, Windows 8.1 and Windows RT 8.1, Windows Server 20
4.3
MEDIUM
CVE-2017-11846
all versions
ChakraCore and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windo
7.5
HIGH
CVE-2017-11843
all versions
ChakraCore and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windo
7.5
HIGH
CVE-2017-11838
all versions
ChakraCore and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows S
7.5
HIGH
CVE-2017-11837
all versions
ChakraCore and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows S
7.5
HIGH
CVE-2017-11834
all versions
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2
5.3
MEDIUM
CVE-2017-11827
all versions
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and
7.5
HIGH
CVE-2017-11791
all versions
ChakraCore and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, W
3.1
LOW
CVE-2017-11822
all versions
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2
7.5
HIGH
CVE-2017-11813
all versions
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, and Windows Server 2012
7.5
HIGH
CVE-2017-11810
all versions
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2
7.5
HIGH
CVE-2017-11793
all versions
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2
7.5
HIGH
CVE-2017-11790
all versions
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2
4.3
MEDIUM
CVE-2017-8750
all versions
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 R2,
7.5
HIGH
CVE-2017-8749
all versions
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2
7.5
HIGH
CVE-2017-8748
all versions
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 R2,
7.5
HIGH
CVE-2017-8747
all versions
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and
7.5
HIGH
CVE-2017-8741
all versions
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2
7.5
HIGH
CVE-2017-8736
all versions
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 R2,
4.3
MEDIUM
CVE-2017-8733
all versions
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2
4.3
MEDIUM
CVE-2017-8669
all versions
Microsoft browsers in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 R2,
7.5
HIGH
CVE-2017-8653
all versions
Microsoft browsers in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server
7.5
HIGH
CVE-2017-8651
all versions
Internet Explorer in Microsoft Windows Server 2008 SP2 and Windows Server 2012 allows an attacker to execute arbitrary code in the
7.5
HIGH
CVE-2017-8641
all versions
Microsoft browsers in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and
7.5
HIGH
CVE-2017-8636
all versions
Microsoft browsers in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and
7.5
HIGH
CVE-2017-8635
all versions
Microsoft browsers in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and
7.5
HIGH
CVE-2017-8625
all versions
Internet Explorer in Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to bypass Device Guard User Mod
8.8
HIGH
CVE-2017-8618
all versions
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and
7.5
HIGH
CVE-2017-8608
all versions
Microsoft browsers in Microsoft Windows Server 2008 and R2, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10
7.5
HIGH
CVE-2017-8607
all versions
Microsoft browsers in Microsoft Windows 7, Windows Server 2008 and R2, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2,
7.5
HIGH
CVE-2017-8606
all versions
Microsoft browsers in Microsoft Windows 7, Windows Server 2008 and R2, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2,
7.5
HIGH
CVE-2017-8602
all versions
Microsoft browsers on Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 R2,
6.5
MEDIUM
CVE-2017-8594
all versions
Internet Explorer on Microsoft Windows 8.1 and Windows RT 8.1, and Windows Server 2012 R2 allows an attacker to execute arbitrary
7.5
HIGH
CVE-2017-8592
all versions
Microsoft browsers on when Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1, Windows RT 8.1, and Windows Server 20
6.5
MEDIUM
CVE-2014-6354
all versions
Internet Explorer 6, Internet Explorer 7, Internet Explorer 8, Internet Explorer 9, Internet Explorer 10, and Internet Explorer 11
7.5
HIGH
CVE-2017-8547
all versions
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, and Windows Server 2012
7.5
HIGH
CVE-2017-8529
all versions
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, and Windows Server 2012
6.5
MEDIUM
CVE-2017-8524
all versions
Microsoft browsers in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and
7.5
HIGH
CVE-2017-8522
all versions
Microsoft browsers in Microsoft Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, and 1703,
7.5
HIGH
CVE-2017-8519
all versions
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, and Windows Server 2
7.5
HIGH
CVE-2017-8517
all versions
Microsoft browsers in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Wi
7.5
HIGH
CVE-2017-0238
all versions
A remote code execution vulnerability exists in Microsoft browsers in the way JavaScript scripting engines handle objects in memor
7.5
HIGH
CVE-2017-0231
all versions
A spoofing vulnerability exists when Microsoft browsers render SmartScreen Filter, aka "Microsoft Browser Spoofing Vulnerability."
4.3
MEDIUM
CVE-2017-0228
all versions
A remote code execution vulnerability exists in Microsoft browsers in the way JavaScript engines render when handling objects in m
7.5
HIGH
CVE-2017-0226
all versions
A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka "Internet Explorer
7.5
HIGH
CVE-2017-0222
all versions
A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka "Internet Explorer
8.8
HIGH
CVE-2017-0064
all versions
A security feature bypass vulnerability exists in Internet Explorer that allows for bypassing Mixed Content warnings, aka "Interne
6.5
MEDIUM
CVE-2017-0210
all versions
An elevation of privilege vulnerability exists when Internet Explorer does not properly enforce cross-domain policies, which could
8.8
HIGH
CVE-2017-0202
all versions
A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory. The vulnerability could
7.5
HIGH
CVE-2017-0201
all versions
A remote code execution vulnerability exists in Internet Explorer in the way that the JScript and VBScript engines render when han
7.5
HIGH
CVE-2017-0154
all versions
Microsoft Internet Explorer 11 on Windows 10, 1511, and 1606 and Windows Server 2016 does not enforce cross-domain policies, allow
4.4
MEDIUM
CVE-2017-0149
all versions
Microsoft Internet Explorer 9 through 11 allow remote attackers to execute arbitrary code or cause a denial of service (memory cor
8.8
HIGH
CVE-2017-0130
all versions
The scripting engine in Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a deni
7.5
HIGH
CVE-2017-0059
all versions
Microsoft Internet Explorer 9 through 11 allow remote attackers to obtain sensitive information from process memory via a crafted
4.3
MEDIUM
CVE-2017-0049
all versions
The VBScript engine in Microsoft Internet Explorer 11 allows remote attackers to obtain sensitive information from process memory
4.3
MEDIUM
CVE-2017-0040
all versions
The scripting engine in Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a deni
7.5
HIGH
CVE-2017-0033
all versions
Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to spoof web content via a crafted web site, aka "Microso
4.3
MEDIUM
CVE-2017-0018
all versions
Microsoft Internet Explorer 10 and 11 allow remote attackers to execute arbitrary code or cause a denial of service (memory corrup
7.5
HIGH
CVE-2017-0012
all versions
Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to spoof web content via a crafted web site, aka "Microso
4.3
MEDIUM
CVE-2017-0009
all versions
Microsoft Internet Explorer 9 through 11 allow remote attackers to obtain sensitive information from process memory via a crafted
4.3
MEDIUM
CVE-2017-0008
all versions
Microsoft Internet Explorer 9 through 11 allow remote attackers to obtain sensitive information from process memory via a crafted
4.3
MEDIUM
CVE-2017-0037
all versions
Microsoft Internet Explorer 10 and 11 and Microsoft Edge have a type confusion issue in the Layout::MultiColumnBoxBuilder::HandleC
8.1
HIGH
CVE-2016-7287
all versions
The scripting engines in Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cau
7.5
HIGH
CVE-2016-7284
all versions
Microsoft Internet Explorer 10 and 11 allows remote attackers to obtain sensitive information from process memory via a crafted we
4.3
MEDIUM
CVE-2016-7283
all versions
Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
8.8
HIGH
CVE-2016-7282
all versions
Cross-site scripting (XSS) vulnerability in Microsoft Internet Explorer 9 through 11 and Microsoft Edge allows remote attackers to
6.1
MEDIUM
CVE-2016-7281
all versions
The Web Workers implementation in Microsoft Internet Explorer 10 and 11 and Microsoft Edge allows remote attackers to bypass the S
5.3
MEDIUM
CVE-2016-7279
all versions
Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of
7.5
HIGH
CVE-2016-7278
all versions
Microsoft Internet Explorer 9 through 11 allows remote attackers to obtain sensitive information from process memory via a crafted
5.3
MEDIUM
CVE-2016-7241
all versions
Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (m
7.5
HIGH
CVE-2016-7239
all versions
The RegEx class in the XSS filter in Microsoft Internet Explorer 9 through 11 and Microsoft Edge allows remote attackers to conduc
3.1
LOW
CVE-2016-7227
all versions
The scripting engines in Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to determine the exist
3.1
LOW
CVE-2016-7199
all versions
Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to bypass the Same Origin Policy and obtain sen
3.1
LOW
CVE-2016-7198
all versions
Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of
7.5
HIGH
CVE-2016-7196
all versions
Microsoft Internet Explorer 10 and 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of ser
7.5
HIGH
CVE-2016-7195
all versions
Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of
7.5
HIGH
CVE-2016-3391
all versions
Microsoft Internet Explorer 10 and 11 and Microsoft Edge allow context-dependent attackers to discover credentials by leveraging a
5.3
MEDIUM
CVE-2016-3390
all versions
The scripting engines in Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cau
7.5
HIGH
CVE-2016-3388
all versions
Microsoft Internet Explorer 10 and 11 and Microsoft Edge do not properly restrict access to private namespaces, which allows remot
5.3
MEDIUM
CVE-2016-3387
all versions
Microsoft Internet Explorer 10 and 11 and Microsoft Edge do not properly restrict access to private namespaces, which allows remot
7.5
HIGH
CVE-2016-3385
all versions
The scripting engine in Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a deni
7.5
HIGH
CVE-2016-3384
all versions
Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
7.5
HIGH
CVE-2016-3383
all versions
Microsoft Internet Explorer 10 and 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corru
7.5
HIGH
CVE-2016-3382
all versions
The scripting engines in Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary c
7.5
HIGH
CVE-2016-3331
all versions
Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (m
7.5
HIGH
CVE-2016-3298
all versions
Microsoft Internet Explorer 9 through 11 and the Internet Messaging API in Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1,
6.5
MEDIUM
CVE-2016-3267
all versions
Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to determine the existence of unspecified files
5.3
MEDIUM
CVE-2016-3375
all versions
The OLE Automation mechanism and VBScript scripting engine in Microsoft Internet Explorer 9 through 11, Windows Vista SP2, Windows
7.5
HIGH
CVE-2016-3353
all versions
Microsoft Internet Explorer 9 through 11 mishandles .url files from the Internet zone, which allows remote attackers to bypass int
8.3
HIGH
CVE-2016-3351
all versions
Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to obtain sensitive information via a crafted w
6.5
MEDIUM
CVE-2016-3325
all versions
Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to obtain sensitive information via a crafted web site, a
3.1
LOW
CVE-2016-3324
all versions
Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
8.8
HIGH
CVE-2016-3297
all versions
Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of
8.8
HIGH
CVE-2016-3295
all versions
Microsoft Internet Explorer 10 and 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of ser
7.5
HIGH
CVE-2016-3292
all versions
Microsoft Internet Explorer 10 and 11 mishandles integrity settings and zone settings, which allows remote attackers to bypass a s
5.0
MEDIUM
CVE-2016-3291
all versions
Microsoft Internet Explorer 11 and Microsoft Edge mishandle cross-origin requests, which allows remote attackers to obtain sensiti
2.4
LOW
CVE-2016-3247
all versions
Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (m
7.5
HIGH
CVE-2016-7153
all versions
The HTTP/2 protocol does not consider the role of the TCP congestion window in providing information about content length, which m
5.3
MEDIUM
CVE-2016-7152
all versions
The HTTPS protocol does not consider the role of the TCP congestion window in providing information about content length, which ma
5.3
MEDIUM
CVE-2016-3329
all versions
Microsoft Internet Explorer 9 through 11 and Edge allow remote attackers to determine the existence of files via a crafted webpage
5.3
MEDIUM
CVE-2016-3327
all versions
Microsoft Internet Explorer 9 through 11 and Edge allow remote attackers to obtain sensitive information via a crafted web page, a
5.3
MEDIUM
CVE-2016-3326
all versions
Microsoft Internet Explorer 9 through 11 and Edge allow remote attackers to obtain sensitive information via a crafted web page, a
5.3
MEDIUM
CVE-2016-3322
all versions
Microsoft Internet Explorer 11 and Edge allow remote attackers to execute arbitrary code via a crafted web page, aka "Microsoft Br
7.5
HIGH
CVE-2016-3321
all versions
Microsoft Internet Explorer 10 and 11 load different files for attempts to open a file:// URL depending on whether the file exists
2.5
LOW
CVE-2016-3293
all versions
Microsoft Internet Explorer 9 through 11 and Edge allow remote attackers to execute arbitrary code via a crafted web page, aka "Mi
7.5
HIGH
CVE-2016-3290
all versions
Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code via a crafted web page, aka "Internet Explorer Me
7.5
HIGH
CVE-2016-3289
all versions
Microsoft Internet Explorer 11 and Edge allow remote attackers to execute arbitrary code via a crafted web page, aka "Microsoft Br
7.5
HIGH
CVE-2016-3288
all versions
Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code via a crafted web page, aka "Internet Explorer Me
7.5
HIGH
CVE-2016-3277
all versions
Microsoft Internet Explorer 10 and 11 and Microsoft Edge allow remote attackers to obtain sensitive information via a crafted web
5.3
MEDIUM
CVE-2016-3276
all versions
Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to conduct content-spoofing attacks via a crafted URL, ak
3.1
LOW
CVE-2016-3274
all versions
Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to conduct content-spoofing attacks via a craft
3.1
LOW
CVE-2016-3273
all versions
The XSS Filter in Microsoft Internet Explorer 9 through 11 and Microsoft Edge does not properly restrict JavaScript code, which al
5.3
MEDIUM
CVE-2016-3264
all versions
Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of
7.5
HIGH
CVE-2016-3261
all versions
Microsoft Internet Explorer 11 allows remote attackers to obtain sensitive information via a crafted web site, aka "Internet Explo
5.3
MEDIUM
CVE-2016-3260
all versions
The Microsoft (1) JScript 9, (2) VBScript, and (3) Chakra JavaScript engines, as used in Microsoft Internet Explorer 11, Microsoft
8.8
HIGH
CVE-2016-3259
all versions
The Microsoft (1) JScript 9, (2) VBScript, and (3) Chakra JavaScript engines, as used in Microsoft Internet Explorer 9 through 11,
8.8
HIGH
CVE-2016-3248
all versions
The Microsoft (1) JScript 9, (2) VBScript, and (3) Chakra JavaScript engines, as used in Microsoft Internet Explorer 9 through 11,
8.8
HIGH
CVE-2016-3245
all versions
Microsoft Internet Explorer 9 through 11 allows remote attackers to trick users into making TCP connections to a restricted port v
6.5
MEDIUM
CVE-2016-3243
all versions
Microsoft Internet Explorer 10 and 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corru
7.5
HIGH
CVE-2016-3242
all versions
Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
7.5
HIGH
CVE-2016-3241
all versions
Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
7.5
HIGH
CVE-2016-3240
all versions
Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
7.5
HIGH
CVE-2016-3204
all versions
The Microsoft (1) JScript 5.8 and 9 and (2) VBScript 5.7 and 5.8 engines, as used in Internet Explorer 9 through 11 and other prod
8.8
HIGH
CVE-2016-3213
all versions
The Web Proxy Auto Discovery (WPAD) protocol implementation in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Wi
8.8
HIGH
CVE-2016-3212
all versions
The XSS Filter in Microsoft Internet Explorer 9 through 11 does not properly identify JavaScript, which makes it easier for remote
6.1
MEDIUM
CVE-2016-3211
all versions
Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
8.8
HIGH
CVE-2016-3210
all versions
The Microsoft (1) JScript and (2) VBScript engines, as used in Internet Explorer 11, allow remote attackers to execute arbitrary c
8.8
HIGH
CVE-2016-0200
all versions
Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
8.8
HIGH
CVE-2016-0199
all versions
Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
8.8
HIGH
CVE-2016-4116
all versions
Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet
7.5
HIGH
CVE-2016-4115
all versions
Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet
7.5
HIGH
CVE-2016-4114
all versions
Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet
7.5
HIGH
CVE-2016-4113
all versions
Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet
7.5
HIGH
CVE-2016-4112
all versions
Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet
7.5
HIGH
CVE-2016-4111
all versions
Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet
7.5
HIGH
CVE-2016-4110
all versions
Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet
7.5
HIGH
CVE-2016-4109
all versions
Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet
7.5
HIGH
CVE-2016-4108
all versions
Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet
7.5
HIGH
CVE-2016-1110
all versions
Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet
7.5
HIGH
CVE-2016-1109
all versions
Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet
7.5
HIGH
CVE-2016-1108
all versions
Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet
7.5
HIGH
CVE-2016-1107
all versions
Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet
7.5
HIGH
CVE-2016-1106
all versions
Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet
7.5
HIGH
CVE-2016-1105
all versions
Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet
7.5
HIGH
CVE-2016-1104
all versions
Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet
7.5
HIGH
CVE-2016-1103
all versions
Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet
7.5
HIGH
CVE-2016-1102
all versions
Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet
7.5
HIGH
CVE-2016-1101
all versions
Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet
7.5
HIGH
CVE-2016-1100
all versions
Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet
7.5
HIGH
CVE-2016-1099
all versions
Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet
7.5
HIGH
CVE-2016-1098
all versions
Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet
7.5
HIGH
CVE-2016-1097
all versions
Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet
7.5
HIGH
CVE-2016-1096
all versions
Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet
7.5
HIGH
CVE-2016-0194
all versions
Microsoft Internet Explorer 10 and 11 allows remote attackers to bypass file permissions and obtain sensitive information via a cr
5.3
MEDIUM
CVE-2016-0192
all versions
Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of
7.5
HIGH
CVE-2016-0189
all versions
The Microsoft (1) JScript 5.8 and (2) VBScript 5.7 and 5.8 engines, as used in Internet Explorer 9 through 11 and other products,
7.5
HIGH
CVE-2016-0188
all versions
The User Mode Code Integrity (UMCI) implementation in Device Guard in Microsoft Internet Explorer 11 allows remote attackers to by
8.8
HIGH
CVE-2016-0166
all versions
Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption)
7.5
HIGH
CVE-2016-0164
all versions
Microsoft Internet Explorer 10 and 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corru
7.5
HIGH
CVE-2016-0162
all versions
Microsoft Internet Explorer 9 through 11 allows remote attackers to determine the existence of files via crafted JavaScript code,
4.3
MEDIUM
CVE-2016-0160
all versions
Microsoft Internet Explorer 11 mishandles DLL loading, which allows local users to gain privileges via a crafted application, aka
7.8
HIGH
CVE-2016-0159
all versions
Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) v
7.5
HIGH
CVE-2016-0154
all versions
Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of
7.5
HIGH
CVE-2015-6184
all versions
The CAttrArray object implementation in Microsoft Internet Explorer 7 through 11 allows remote attackers to execute arbitrary code
8.1
HIGH
CVE-2016-0114
all versions
Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption)
7.5
HIGH
CVE-2016-0113
all versions
Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
7.5
HIGH
CVE-2016-0112
all versions
Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
7.5
HIGH
CVE-2016-0111
all versions
Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of
7.5
HIGH
CVE-2016-0110
all versions
Microsoft Internet Explorer 10 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of
7.5
HIGH
CVE-2016-0109
all versions
Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (m
7.5
HIGH
CVE-2016-0108
all versions
Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption)
7.5
HIGH
CVE-2016-0107
all versions
Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
7.5
HIGH
CVE-2016-0106
all versions
Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption)
7.5
HIGH
CVE-2016-0105
all versions
Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of
7.5
HIGH
CVE-2016-0104
all versions
Microsoft Internet Explorer 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption)
7.5
HIGH
CVE-2016-0103
all versions
Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption)
7.5
HIGH
CVE-2016-0102
all versions
Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (m
7.5
HIGH
CVE-2016-0069
all versions
Microsoft Internet Explorer 9 through 11 allows remote attackers to bypass the Same Origin Policy via unspecified vectors, aka "In
8.8
HIGH
CVE-2016-0068
all versions
Microsoft Internet Explorer 9 through 11 allows remote attackers to bypass the Same Origin Policy via unspecified vectors, aka "In
8.8
HIGH
CVE-2016-0077
all versions
Microsoft Internet Explorer 9 through 11 and Microsoft Edge misparse HTTP responses, which allows remote attackers to spoof web si
4.3
MEDIUM
CVE-2016-0072
all versions
Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
8.8
HIGH
CVE-2016-0071
all versions
Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) v
8.8
HIGH
CVE-2016-0067
all versions
Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
8.8
HIGH
CVE-2016-0064
all versions
Microsoft Internet Explorer 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption)
8.8
HIGH
CVE-2016-0063
all versions
Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
8.8
HIGH
CVE-2016-0062
all versions
Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (m
8.8
HIGH
CVE-2016-0061
all versions
Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of
8.8
HIGH
CVE-2016-0060
all versions
Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of
8.8
HIGH
CVE-2016-0059
all versions
The Hyperlink Object Library in Microsoft Internet Explorer 9 through 11 allows remote attackers to obtain sensitive information f
4.3
MEDIUM
CVE-2016-0041
all versions
Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Wind
7.8
HIGH
CVE-2016-0005
all versions
Microsoft Internet Explorer 9 through 11 allows remote attackers to bypass the Same Origin Policy via unspecified vectors, aka "In
4.3
MEDIUM
CVE-2015-6164
all versions
Microsoft Internet Explorer 9 through 11 improperly implements a cross-site scripting (XSS) protection mechanism, which allows rem
CVE-2015-6162
all versions
Microsoft Internet Explorer 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption)
CVE-2015-6161
all versions
Microsoft Internet Explorer 7 through 11 and Microsoft Edge allow remote attackers to bypass the ASLR protection mechanism via a c
CVE-2015-6160
all versions
Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption)
CVE-2015-6159
all versions
Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (m
CVE-2015-6158
all versions
Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (m
CVE-2015-6157
all versions
Microsoft Internet Explorer 11 allows remote attackers to obtain sensitive information from process memory via a crafted web site,
CVE-2015-6156
all versions
Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
CVE-2015-6155
all versions
Microsoft Internet Explorer 10 and 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of ser
CVE-2015-6154
all versions
Microsoft Internet Explorer 7 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of
CVE-2015-6153
all versions
Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (m
CVE-2015-6152
all versions
Microsoft Internet Explorer 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption)
CVE-2015-6151
all versions
Microsoft Internet Explorer 8 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of
CVE-2015-6150
all versions
Microsoft Internet Explorer 7 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
CVE-2015-6149
all versions
Microsoft Internet Explorer 8 and 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corrupt
CVE-2015-6148
all versions
Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of
CVE-2015-6147
all versions
Microsoft Internet Explorer 8 and 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corrupt
CVE-2015-6146
all versions
Microsoft Internet Explorer 7 and 8 allows remote attackers to execute arbitrary code or cause a denial of service (memory corrupt
CVE-2015-6145
all versions
Microsoft Internet Explorer 7 and 8 allows remote attackers to execute arbitrary code or cause a denial of service (memory corrupt
CVE-2015-6144
all versions
Microsoft Internet Explorer 8 through 11 and Microsoft Edge mishandle HTML attributes in HTTP responses, which allows remote attac
CVE-2015-6143
all versions
Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption)
CVE-2015-6142
all versions
Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (m
CVE-2015-6141
all versions
Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) v
CVE-2015-6140
all versions
Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (m
CVE-2015-6139
all versions
Microsoft Internet Explorer 11 and Microsoft Edge mishandle content types, which allows remote attackers to execute arbitrary web
CVE-2015-6138
all versions
Microsoft Internet Explorer 8 through 11 mishandles HTML attributes in HTTP responses, which allows remote attackers to bypass a c
CVE-2015-6134
all versions
Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) v
CVE-2015-6083
all versions
Microsoft Internet Explorer 8 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
CVE-2015-6045
all versions
Use-after-free vulnerability in the CElement object implementation in Microsoft Internet Explorer 11 allows remote attackers to ex
CVE-2015-6088
all versions
Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to bypass the ASLR protection mechanism via a c
CVE-2015-6087
all versions
Microsoft Internet Explorer 7 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
CVE-2015-6086
all versions
Microsoft Internet Explorer 9 through 11 allows remote attackers to obtain sensitive information from process memory via a crafted
CVE-2015-6085
all versions
Microsoft Internet Explorer 10 and 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corru
CVE-2015-6084
all versions
Microsoft Internet Explorer 10 and 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corru
CVE-2015-6082
all versions
Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption)
CVE-2015-6081
all versions
Microsoft Internet Explorer 8 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
CVE-2015-6080
all versions
Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption)
CVE-2015-6079
all versions
Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption)
CVE-2015-6078
all versions
Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of
CVE-2015-6077
all versions
Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption)
CVE-2015-6076
all versions
Microsoft Internet Explorer 7 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
CVE-2015-6075
all versions
Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption)
CVE-2015-6074
all versions
Microsoft Internet Explorer 7 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
CVE-2015-6073
all versions
Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (m
CVE-2015-6072
all versions
Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption)
CVE-2015-6071
all versions
Microsoft Internet Explorer 7 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
CVE-2015-6070
all versions
Microsoft Internet Explorer 7 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
CVE-2015-6069
all versions
Microsoft Internet Explorer 8 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
CVE-2015-6068
all versions
Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption)
CVE-2015-6066
all versions
Microsoft Internet Explorer 7 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
CVE-2015-6065
all versions
Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
CVE-2015-6064
all versions
Microsoft Internet Explorer 10 and 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of ser
CVE-2015-2427
all versions
Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) v
CVE-2015-6059
all versions
The Microsoft (1) VBScript 5.7 and 5.8 and (2) JScript 5.7 and 5.8 engines, as used in Internet Explorer 8 through 11 and other pr
CVE-2015-6053
all versions
Microsoft Internet Explorer 11 allows remote attackers to obtain sensitive information from process memory via crafted parameters
CVE-2015-6052
all versions
The Microsoft (1) VBScript 5.7 and 5.8 and (2) JScript 5.7 and 5.8 engines, as used in Internet Explorer 8 through 11 and other pr
CVE-2015-6051
all versions
Microsoft Internet Explorer 10 and 11 allows remote attackers to gain privileges via a crafted web site, as demonstrated by a tran
CVE-2015-6050
all versions
Microsoft Internet Explorer 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption)
CVE-2015-6049
all versions
Microsoft Internet Explorer 7 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
CVE-2015-6048
all versions
Microsoft Internet Explorer 7 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
CVE-2015-6047
all versions
The broker EditWith feature in Microsoft Internet Explorer 8 through 11 allows remote attackers to bypass the AppContainer protect
CVE-2015-6046
all versions
Microsoft Internet Explorer 9 through 11 allows remote attackers to obtain sensitive information from process memory via a crafted
CVE-2015-6044
all versions
Microsoft Internet Explorer 8 allows remote attackers to gain privileges via a crafted web site, as demonstrated by a transition f
CVE-2015-6042
all versions
Use-after-free vulnerability in the CWindow object implementation in Microsoft Internet Explorer 11 allows remote attackers to exe
CVE-2015-2542
all versions
Microsoft Internet Explorer 10 and 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of ser
CVE-2015-2541
all versions
Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
CVE-2015-2501
all versions
Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) v
CVE-2015-2500
all versions
Microsoft Internet Explorer 7 and 8 allows remote attackers to execute arbitrary code or cause a denial of service (memory corrupt
CVE-2015-2499
all versions
Microsoft Internet Explorer 7 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
CVE-2015-2498
all versions
Microsoft Internet Explorer 7 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
CVE-2015-2494
all versions
Microsoft Internet Explorer 7 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of
CVE-2015-2493
all versions
The (1) VBScript and (2) JScript engines in Microsoft Internet Explorer 8 allow remote attackers to execute arbitrary code or caus
CVE-2015-2492
all versions
Microsoft Internet Explorer 7 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
CVE-2015-2491
all versions
Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
CVE-2015-2490
all versions
Microsoft Internet Explorer 7 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
CVE-2015-2489
all versions
Microsoft Internet Explorer 11 allows remote attackers to gain privileges via a crafted web site, as demonstrated by a transition
CVE-2015-2487
all versions
Microsoft Internet Explorer 7 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
CVE-2015-2486
all versions
Microsoft Internet Explorer 7 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of
CVE-2015-2485
all versions
Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of
CVE-2015-2484
all versions
Microsoft Internet Explorer 10 and 11 uses an incorrect flag during certain filesystem accesses, which allows remote attackers to
CVE-2015-2483
all versions
Microsoft Internet Explorer 10 and 11 allows remote attackers to obtain sensitive information from process memory via a crafted we
CVE-2015-2502
all versions
Microsoft Internet Explorer 7 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
8.8
HIGH
CVE-2015-2423
all versions
Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold a
CVE-2015-2452
all versions
Microsoft Internet Explorer 7 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
CVE-2015-2451
all versions
Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
CVE-2015-2450
all versions
Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
CVE-2015-2449
all versions
Microsoft Internet Explorer 7 through 11 and Edge allow remote attackers to bypass the ASLR protection mechanism via a crafted web
CVE-2015-2448
all versions
Microsoft Internet Explorer 9 and 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corrup
CVE-2015-2447
all versions
Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption)
CVE-2015-2446
all versions
Microsoft Internet Explorer 11 and Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corr
CVE-2015-2445
all versions
Microsoft Internet Explorer 10 allows remote attackers to bypass the ASLR protection mechanism via a crafted web site, aka "ASLR B
CVE-2015-2444
all versions
Microsoft Internet Explorer 8 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
CVE-2015-2443
all versions
Microsoft Internet Explorer 10 and 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corru
CVE-2015-2442
all versions
Microsoft Internet Explorer 8 through 11 and Edge allow remote attackers to execute arbitrary code or cause a denial of service (m
CVE-2015-2441
all versions
Microsoft Internet Explorer 7 through 11 and Edge allow remote attackers to execute arbitrary code or cause a denial of service (m
CVE-2015-2425
all versions
Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption)
8.8
HIGH
CVE-2015-2422
all versions
Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
CVE-2015-2421
all versions
Microsoft Internet Explorer 6 through 11 allows remote attackers to bypass the ASLR protection mechanism via a crafted web site, a
CVE-2015-2419
all versions
JScript 9 in Microsoft Internet Explorer 10 and 11 allows remote attackers to execute arbitrary code or cause a denial of service
8.8
HIGH
CVE-2015-2414
all versions
Microsoft Internet Explorer 8 through 11 allows remote attackers to obtain sensitive browsing-history information via vectors rela
CVE-2015-2413
all versions
Microsoft Internet Explorer 6 through 11 allows remote attackers to determine the existence of local files via a crafted module-re
CVE-2015-2412
all versions
Microsoft Internet Explorer 10 and 11 allows remote attackers to read arbitrary local files via a crafted pathname, aka "Internet
CVE-2015-2411
all versions
Microsoft Internet Explorer 10 and 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corru
CVE-2015-2410
all versions
Microsoft Internet Explorer 6 through 11 allows remote attackers to determine the existence of local files via a crafted styleshee
CVE-2015-2408
all versions
Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
CVE-2015-2406
all versions
Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
CVE-2015-2404
all versions
Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
CVE-2015-2403
all versions
Microsoft Internet Explorer 8 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) v
CVE-2015-2402
all versions
Microsoft Internet Explorer 7 through 11 allows remote attackers to gain privileges via a crafted web site, aka "Internet Explorer
CVE-2015-2401
all versions
Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
CVE-2015-2398
all versions
Microsoft Internet Explorer 8 through 11 allows remote attackers to bypass the XSS filter via a crafted attribute of an element in
CVE-2015-2397
all versions
Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
CVE-2015-2391
all versions
Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) v
CVE-2015-2390
all versions
Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory co
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin