CVE-2013-0074
| CVE Published | 2013-03-13 |
|---|---|
| Related Vendor(s) | microsoft |
| Related Product(s) | silverlight |
| Exploitation Reported (CISA KEV) | 2022-05-25 |
| CVSS 3 Base Score | 7.8 (HIGH) |
| CVSS 3 Attack Complexity | LOW |
| CVSS 3 Attack Vector | LOCAL |
Microsoft Silverlight 5, and 5 Developer Runtime, before 5.1.20125.0 does not properly validate pointers during HTML object rendering, which allows remote attackers to execute arbitrary code via a crafted Silverlight application, aka "Silverlight Double Dereference Vulnerability."
Cyber Threat Graph Context
Explore how this CVE relates to the wider threat graph