CVE-2017-0022: Microsoft XML Core Services Information Disclosure
Microsoft XML Core Services Information Disclosure Vulnerability. Microsoft XML Core Services (MSXML) improperly handles objects in memory, allowing attackers to test for files on disk via a crafted web site.
- CISA KEV-listed (remediation due 2022-06-14)
- EPSS 36.7% (97.2% percentile)