Microsoft Internet Explorer 10 and 11 load different files for attempts to open a file:// URL depending on whether the file exists, which allows local users to enumerate files via vectors involving a. Rated low severity (CVSS 2.5). Public exploit code available and EPSS exploitation probability 28.7%.
Information Disclosure
Microsoft
Internet Explorer
NVD
CVSS 3.0
2.5
EPSS
28.7%