CISA Known Exploited Vulnerability
This vulnerability is actively exploited in the wild and listed in the CISA Known Exploited Vulnerabilities catalog.
Remediation Deadline: Jun 14, 2022
Description
An information disclosure vulnerability exists in the way that certain functions in Internet Explorer and Edge handle objects in memory. The vulnerability could allow an attacker to detect specific files on the user's computer.
EPSS — Exploit Probability
40.3%
Higher than 97.3% of all CVEs
Required Action
https://nvd.nist.gov/vuln/detail/CVE-2016-3351
Risk Assessment
HIGHIn CISA KEV
Ransomware
Details
- Severity
- High
- EPSS
- 40.3%
- CISA KEV
- Yes
- Ransomware
- Known
- Articles
- 0
Timeline
Published
May 24, 2022
Added to KEV
May 24, 2022
Remediation Due
Jun 14, 2022