vulnerability

Microsoft Windows: CVE-2018-8366: Microsoft Edge Information Disclosure Vulnerability

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
3	(AV:N/AC:H/Au:N/C:P/I:N/A:N)	Sep 11, 2018	Sep 11, 2018	Sep 3, 2025

Severity

CVSS

(AV:N/AC:H/Au:N/C:P/I:N/A:N)

Published

Sep 11, 2018

Added

Sep 11, 2018

Modified

Sep 3, 2025

Description

An information disclosure vulnerability exists when the Microsoft Edge Fetch API incorrectly handles a filtered response type, aka "Microsoft Edge Information Disclosure Vulnerability." This affects Microsoft Edge.

Solution

microsoft-windows-windows_10-1803-kb4457128

References

BID-105253
CVE-2018-8366
https://attackerkb.com/topics/CVE-2018-8366
CWE-200
https://support.microsoft.com/help/4457128

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report