CVE-2017-0022
Microsoft XML Core Services Information Disclosure Vulnerability
CVSS
—
Sin CVSS
EPSS
18.1%
p97
KEV
SÍ
24 may 2022
Exploit Today
79
0-100
Publicado: — · Última mod.: —
18.1%EPSS · 30 días18.1%
2026-06-302026-07-16
Producto
Microsoft / XML Core Services
Vulnerabilidad
Microsoft XML Core Services Information Disclosure Vulnerability
Añadido a KEV
24 may 2022
Remediar antes de
14 jun 2022
Uso conocido en ransomware
No
Descripción resumida
Microsoft XML Core Services (MSXML) improperly handles objects in memory, allowing attackers to test for files on disk via a crafted web site.
Acción requerida
Apply updates per vendor instructions.
Notas
https://nvd.nist.gov/vuln/detail/CVE-2017-0022
CVECVSSEPSSKEVRExplotTítuloVis.
CVE-2012-1889—99.7%
KEV—80Microsoft XML Core Services Memory Corruption Vulnerability—