CVE-2021-26411

Internet Explorer Memory Corruption Vulnerability

Basic Information

CVE State: PUBLISHED
Reserved Date: January 29, 2021
Published Date: March 11, 2021
Last Updated: February 04, 2025
Vendor: Microsoft
Product: Internet Explorer 9, Internet Explorer 11, Microsoft Edge (EdgeHTML-based)
Description: Internet Explorer Memory Corruption Vulnerability

CVSS Scores

CVSS v3.1

8.8 - HIGH

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:H/A:L/E:P/RL:O/RC:C

SSVC Information

Exploitation: active
Technical Impact: total

Exploit Status

Exploited in the Wild: Yes (added 2021-11-03 00:00:00 UTC) Source
Proof of Concept Available: Yes (added 2021-11-22 12:40:10 UTC) Source
Used in Malware: Yes (added 2021-11-03 00:00:00 UTC) Source

References

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26411

Known Exploited Vulnerability Information

Source	Added Date
CISA	2021-11-03 00:00:00 UTC

Potential Proof of Concepts

Warning: These PoCs have not been tested and could contain malware. Use at your own risk.

CrackerCat/CVE-2021-26411

Type: github • Created: 2021-11-22 12:40:10 UTC • Stars: 2