CVE-2019-0612
CVE-2019-0612
Vexday Risk Score
28Low
SSVC decision (CISA)
Attend
PoC available → attend closely
CVSS —EPSS 10.5%KEV nãoPoC públicaNuclei —Metasploit —Patch —
Lifecycle
19 Mar 2019Public PoC
08 Apr 2019Published on NVD
Recommendation: Plan a near-term fix — a public PoC already exists.
A security feature bypass vulnerability exists when Click2Play protection in Microsoft Edge improperly handles flash objects. By itself, this bypass vulnerability does not allow arbitrary code execution, aka 'Microsoft Edge Security Feature Bypass Vulnerability'.
Affected products
Microsoft · Microsoft Edgepublic PoCs found — 1
exploitdbwww.exploit-db.com/exploits/46569unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.