vulnerability

MS16-068: Cumulative Security Update for Microsoft Edge (3163656)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:M/Au:N/C:C/I:C/A:C)	Jun 14, 2016	Jun 14, 2016	Jul 28, 2025

Severity

CVSS

(AV:N/AC:M/Au:N/C:C/I:C/A:C)

Published

Jun 14, 2016

Added

Jun 14, 2016

Modified

Jul 28, 2025

Description

A security feature bypass exists in Microsoft Edge when the Edge Content Security Policy (CSP) fails to properly validate certain specially crafted documents. An attacker who exploited the bypass could trick a user into loading a page containing malicious content.

Solutions

WINDOWS-HOTFIX-MS16-063-47554aba-fd2f-4db4-aa7f-8530e5208b56WINDOWS-HOTFIX-MS16-063-76158f6b-7833-4cd0-8e20-fcf6a7576a7cWINDOWS-HOTFIX-MS16-063-7d7b8580-ff44-4dc9-9795-13563702cfb8WINDOWS-HOTFIX-MS16-063-d2f6b85d-f62d-4ad4-81e4-ee7738642c90

References

CVE-2016-3198
https://attackerkb.com/topics/CVE-2016-3198
CVE-2016-3199
https://attackerkb.com/topics/CVE-2016-3199
CVE-2016-3201
https://attackerkb.com/topics/CVE-2016-3201
CVE-2016-3202
https://attackerkb.com/topics/CVE-2016-3202
CVE-2016-3203
https://attackerkb.com/topics/CVE-2016-3203
CVE-2016-3214
https://attackerkb.com/topics/CVE-2016-3214
CVE-2016-3215
https://attackerkb.com/topics/CVE-2016-3215
CVE-2016-3222
https://attackerkb.com/topics/CVE-2016-3222
MS-MS16-068
MSKB-3163656

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today