CVE-2020-17053: Internet Explorer Memory Corruption Vulnerability
Overview
- Severity
- High (CVSS 7.5)
- CVSS Vector
- CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C
- Category
- Remote Code Execution
- Exploit Status
- Not Exploited
- Exploitation Likelihood
- More Likely
- Patch Tuesday
- 2020-Nov
- Released
- 2020-11-10
- EPSS Score
- 3.99% (percentile: 88.4%)
Affected Products (18)
Browser
- Internet Explorer 11 on Windows 10 Version 1803 for 32-bit Systems
- Internet Explorer 11 on Windows 10 Version 1803 for x64-based Systems
- Internet Explorer 11 on Windows 10 Version 1803 for ARM64-based Systems
- Internet Explorer 11 on Windows 10 Version 1809 for 32-bit Systems
- Internet Explorer 11 on Windows 10 Version 1809 for x64-based Systems
- Internet Explorer 11 on Windows 10 Version 1809 for ARM64-based Systems
- Internet Explorer 11 on Windows Server 2019
- Internet Explorer 11 on Windows 10 Version 1909 for 32-bit Systems
- Internet Explorer 11 on Windows 10 Version 1909 for x64-based Systems
- Internet Explorer 11 on Windows 10 Version 1909 for ARM64-based Systems
- Internet Explorer 11 on Windows 10 Version 1903 for 32-bit Systems
- Internet Explorer 11 on Windows 10 Version 1903 for x64-based Systems
- Internet Explorer 11 on Windows 10 Version 1903 for ARM64-based Systems
- Internet Explorer 11 on Windows 10 Version 2004 for 32-bit Systems
- Internet Explorer 11 on Windows 10 Version 2004 for ARM64-based Systems
- Internet Explorer 11 on Windows 10 Version 2004 for x64-based Systems
- Internet Explorer 11 on Windows 10 Version 20H2 for ARM64-based Systems
- Internet Explorer 11 on Windows 10 Version 20H2 for 32-bit Systems
Security Updates (4)
Acknowledgments
Elliot Cao (@iamelli0t) working with Trend Micro Zero Day Initiative
Revision History
- 2020-11-10: Information published.