Vulnerabilities > Microsoft > Internet Explorer > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-09-11 | CVE-2020-1506 | Unspecified vulnerability in Microsoft Internet Explorer 11 <p>An elevation of privilege vulnerability exists in the way that the Wininit.dll handles objects in memory. | 6.1 |
| 2020-09-11 | CVE-2020-0878 | Out-of-bounds Write vulnerability in Microsoft Chakracore, Edge and Internet Explorer <p>A remote code execution vulnerability exists in the way that Microsoft browsers access objects in memory. | 4.2 |
| 2020-08-17 | CVE-2020-1567 | Unspecified vulnerability in Microsoft Internet Explorer 11/9 A remote code execution vulnerability exists in the way that the MSHTML engine improperly validates input. An attacker could execute arbitrary code in the context of the current user. | 4.2 |
| 2020-07-14 | CVE-2020-1432 | Information Exposure vulnerability in Microsoft Internet Explorer 11 An information disclosure vulnerability exists when Skype for Business is accessed via Internet Explorer, aka 'Skype for Business via Internet Explorer Information Disclosure Vulnerability'. | 4.3 |
| 2020-03-13 | CVE-2009-5159 | Cross-site Scripting vulnerability in multiple products Invision Power Board (aka IPB or IP.Board) 2.x through 3.0.4, when Internet Explorer 5 is used, allows XSS via a .txt attachment. | 4.3 |
| 2020-02-11 | CVE-2020-0706 | Information Exposure vulnerability in Microsoft Edge and Internet Explorer An information disclosure vulnerability exists in the way that affected Microsoft browsers handle cross-origin requests, aka 'Microsoft Browser Information Disclosure Vulnerability'. | 4.3 |
| 2019-10-10 | CVE-2019-1357 | Authentication Bypass by Spoofing vulnerability in Microsoft Edge and Internet Explorer A spoofing vulnerability exists when Microsoft Browsers improperly handle browser cookies, aka 'Microsoft Browser Spoofing Vulnerability'. | 4.3 |
| 2019-10-10 | CVE-2019-0608 | Authentication Bypass by Spoofing vulnerability in Microsoft Edge and Internet Explorer A spoofing vulnerability exists when Microsoft Browsers does not properly parse HTTP content, aka 'Microsoft Browser Spoofing Vulnerability'. | 4.3 |
| 2019-09-11 | CVE-2019-1220 | Forced Browsing vulnerability in Microsoft Edge and Internet Explorer A security feature bypass vulnerability exists when Microsoft Browsers fail to validate the correct Security Zone of requests for specific URLs, aka 'Microsoft Browser Security Feature Bypass Vulnerability'. | 4.3 |
| 2019-08-14 | CVE-2019-1192 | Incorrect Authorization vulnerability in Microsoft Edge and Internet Explorer A security feature bypass vulnerability exists when Microsoft browsers improperly handle requests of different origins, aka 'Microsoft Browsers Security Feature Bypass Vulnerability'. | 4.3 |