CVE-2017-0222

A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka "Internet Explorer Memory Corruption...

Basic Information

CVE State: PUBLISHED
Reserved Date: September 09, 2016
Published Date: May 12, 2017
Last Updated: July 30, 2025
Vendor: Microsoft Corporation
Product: Internet Explorer
Description: A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka "Internet Explorer Memory Corruption Vulnerability." This CVE ID is unique from CVE-2017-0226.
Tags

CVSS Scores

CVSS v3.1

8.8 - HIGH

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CVSS v2.0

7.6

Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C

SSVC Information

Exploitation: active
Technical Impact: total

Exploit Status

Exploited in the Wild: Yes (2022-02-25 00:00:00 UTC) Source

References

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0222 http://www.securityfocus.com/bid/98127 http://www.securitytracker.com/id/1038423

Known Exploited Vulnerability Information

Source	Added Date
CISA	2022-02-25 00:00:00 UTC

Timeline

CVE ID Reserved

September 09, 2016
CVE Published to Public

May 12, 2017
Added to KEVIntel

February 25, 2022