← back
CVE-2019-0612

CVE-2019-0612

EPSS 10.5%
Vexday Risk Score
28Low
SSVC decision (CISA)
Attend
PoC available → attend closely
CVSS EPSS 10.5%KEV nãoPoC públicaNuclei Metasploit Patch
Lifecycle
19 Mar 2019Public PoC
08 Apr 2019Published on NVD
Recommendation: Plan a near-term fix — a public PoC already exists.
A security feature bypass vulnerability exists when Click2Play protection in Microsoft Edge improperly handles flash objects. By itself, this bypass vulnerability does not allow arbitrary code execution, aka 'Microsoft Edge Security Feature Bypass Vulnerability'.
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.