Endpoint Vulnerability

Microsoft Edge Security Feature Bypass Vulnerability

Description

A security feature bypass vulnerability exists in Microsoft Edge when the Edge Content Security Policy (CSP) fails to properly validate certain specially crafted documents. An attacker who exploited the bypass could trick a user into loading a page containing malicious content.

Affected Products

Microsoft Edge

References

CVE-2017-11863,