What is the severity of CVE-2018-0891?

CVE-2018-0891 has a severity rating of important indicating a significant risk of information disclosure.

How do I fix CVE-2018-0891?

To fix CVE-2018-0891, you should apply the latest security updates provided by Microsoft for affected software.

Which software versions are affected by CVE-2018-0891?

CVE-2018-0891 affects Internet Explorer 9, 10, and 11, as well as Microsoft Edge on various Windows platforms.

Can CVE-2018-0891 be exploited remotely?

Yes, CVE-2018-0891 can potentially be exploited remotely by an attacker through a malicious web page.

What is the impact of CVE-2018-0891?

The impact of CVE-2018-0891 is that it allows an attacker to gain access to sensitive information from the user's system.

Vulnerability/
CVE-2018-0891

medium

4.3

CWE

401

14/3/2018

16/9/2024

CVE-2018-0891

First published: Wed Mar 14 2018(Updated: )

ChakraCore, and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, and Internet Explorer and Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allow information disclosure, due to how the scripting engine handles objects in memory, aka "Scripting Engine Information Disclosure Vulnerability". This CVE ID is unique from CVE-2018-0939.

Credit: secure@microsoft.com

Affected Software	Affected Version	How to fix
Internet Explorer	=9
Microsoft Windows Server	=sp2
Internet Explorer	=10
Microsoft Windows Server
Microsoft Edge Beta
Internet Explorer	=11
Windows 10
Windows 10	=1511
Windows 10	=1607
Windows 10	=1703
Windows 10	=1709
Microsoft Windows Server 2016
Microsoft Windows 7	=sp1
Microsoft Windows
Microsoft Windows RT
Microsoft Windows Server	=r2-sp1
Microsoft Windows Server	=r2

Remedy

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0891

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2018-0891?
CVE-2018-0891 has a severity rating of important indicating a significant risk of information disclosure.
How do I fix CVE-2018-0891?
To fix CVE-2018-0891, you should apply the latest security updates provided by Microsoft for affected software.
Which software versions are affected by CVE-2018-0891?
CVE-2018-0891 affects Internet Explorer 9, 10, and 11, as well as Microsoft Edge on various Windows platforms.
Can CVE-2018-0891 be exploited remotely?
Yes, CVE-2018-0891 can potentially be exploited remotely by an attacker through a malicious web page.
What is the impact of CVE-2018-0891?
The impact of CVE-2018-0891 is that it allows an attacker to gain access to sensitive information from the user's system.

agent/references
agent/type
agent/severity
agent/author
agent/weakness
agent/remedy
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/first-publish-date
agent/event
agent/source
agent/softwarecombine
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/microsoft
canonical/internet explorer
version/internet explorer/9
canonical/microsoft windows server
version/microsoft windows server/sp2
version/internet explorer/10
canonical/microsoft edge beta
version/internet explorer/11
canonical/windows 10
version/windows 10/1511
version/windows 10/1607
version/windows 10/1703
version/windows 10/1709
canonical/microsoft windows server 2016
canonical/microsoft windows 7
version/microsoft windows 7/sp1
canonical/microsoft windows
canonical/microsoft windows rt
version/microsoft windows server/r2-sp1
version/microsoft windows server/r2