Vulnerability in Microsoft Internet Explorer 10
CVE-2019-1220
A security feature bypass vulnerability exists when Microsoft Browsers fail to validate the correct Security Zone of requests for specific URLs, aka 'Microsoft Browser Security Feature Bypass Vulnerability'.
EPSS: 0.059 (90.8th percentile) — read the EPSS interpretation.
Affected products
- Microsoft Internet Explorer 10 — versions Windows Server 2012
- Microsoft Internet Explorer 11 — versions Windows 7 for 32-bit Systems Service Pack 1, Windows 7 for x64-based Systems Service Pack 1, Windows Server 2008 R2 for x64-based Systems Service Pack 1
- Microsoft Internet Explorer 11 On Windows 10 Version 1903 For 32-bit Systems — versions unspecified
- Microsoft Internet Explorer 11 On Windows 10 Version 1903 For Arm64-based Systems — versions unspecified
- Microsoft Internet Explorer 11 On Windows 10 Version 1903 For X64-based Systems — versions unspecified
- Microsoft Internet Explorer 11 On Windows Server 2012 — versions unspecified
- Microsoft Internet Explorer 9 — versions Windows Server 2008 for 32-bit Systems Service Pack 2, Windows Server 2008 for x64-based Systems Service Pack 2
- Microsoft Edge (Edgehtml-based) On Windows 10 For 32-bit Systems — versions unspecified
- Microsoft Edge (Edgehtml-based) On Windows 10 For X64-based Systems — versions unspecified
- Microsoft Edge (Edgehtml-based) On Windows 10 Version 1607 For 32-bit Systems — versions unspecified
References
- portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1220 (x_refsource_MISC)