CISA/NIST NVD Alert - CVE-2013-3896

Silverlight - Microsoft Silverlight Information Disclosure Vulnerability

CISA/NIST Known Exploited Vulnerability Alert

CVE Identification Number

CVE-2013-3896

Vendor Name

Microsoft

Product

Silverlight

Vulnerability Name

Microsoft Silverlight Information Disclosure Vulnerability

Description of Vulnerability

Microsoft Silverlight does not properly validate pointers during access to Silverlight elements, which allows remote attackers to obtain sensitive information via a crafted Silverlight application.

Date Added to CISA Known Exploited Vulnerability Database

2022-05-25

Remediation

The impacted product is end-of-life and should be disconnected if still in use.

Link to NIST NVD CVE Listing

National Vulnerability Database Source