CVE-2016-3351: Microsoft Internet Explorer and Edge Information Disclosure
Microsoft Internet Explorer and Edge Information Disclosure Vulnerability. An information disclosure vulnerability exists in the way that certain functions in Internet Explorer and Edge handle objects in memory. The vulnerability could allow an attacker to detect specific files on the user's computer.
- CISA KEV-listed (remediation due 2022-06-14)
- used in ransomware campaigns
- EPSS 45.4% (97.7% percentile)