vulnerability

Microsoft Windows: CVE-2018-8289: Microsoft Edge based on Edge HTML Information Disclosure Vulnerability

Try Surface Command

Back to search

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:N/A:N)

Published

Jul 10, 2018

Added

Jul 10, 2018

Modified

Sep 3, 2025

Description

An information disclosure vulnerability exists when Microsoft Edge improperly handles objects in memory, aka "Microsoft Edge Information Disclosure Vulnerability." This affects Microsoft Edge. This CVE ID is unique from CVE-2018-8297, CVE-2018-8324, CVE-2018-8325.

Solutions

microsoft-windows-windows_10-1803-kb4338819microsoft-windows-windows_10-1803-kb4345421

References

BID-104628
CVE-2018-8289
https://attackerkb.com/topics/CVE-2018-8289
CWE-200
https://support.microsoft.com/help/4338819
https://support.microsoft.com/help/4345421

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report