Skip to main content
CVE-2017-0037 HIGH POC KEV PATCH THREAT Act Now

Microsoft Internet Explorer 10 and 11 and Microsoft Edge have a type confusion issue in the Layout::MultiColumnBoxBuilder::HandleColumnBreakOnColumnSpanningElement function in mshtml.dll, which. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. Actively exploited in the wild (cisa kev) and public exploit code available.

Microsoft RCE Memory Corruption
NVD Exploit-DB
CVSS 3.1
8.1
EPSS
90.5%
Threat
7.3

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy