KEV Entry

CVE-2016-3351

Known Exploited Vulnerability Entry CISA

Entry Details
Confirmed Exploited

CVE-2016-3351

2022-05-24 00:00 UTC


Timestamps

2022-05-24

2022-05-24


Scope

KEV entry: Microsoft Internet Explorer and Edge Information Disclosure Vulnerability | Affected: Microsoft / Internet Explorer and Edge | Description: An information disclosure vulnerability exists in the way that certain functions in Internet Explorer and Edge handle objects in memory. The vulnerability could allow an attacker to detect specific files on the user's computer. | Required action: Apply updates per vendor instructions. | Due date: 2022-06-14 | Known ransomware campaign use (KEV): Known | Notes (KEV): https://nvd.nist.gov/vuln/detail/CVE-2016-3351


References
  • {'id': 'CVE-2016-3351', 'url': 'https://www.cisa.gov/known-exploited-vulnerabilities-catalog?search_api_fulltext=CVE-2016-3351'}

fe549506-0694-4d56-991f-52255778dc8a

CISA
405284c2-e461-4670-8979-7fd2c9755a60

2026-02-02 12:27 UTC

2026-02-06 07:17 UTC

Evidence
1
Type Source Signal Confidence Details GCVE Metadata
vendor_report cisa-kev successful_exploitation 0.80
View details
{
  "cwes": [
    "CWE-200"
  ],
  "date_added": "2022-05-24",
  "due_date": "2022-06-14",
  "feed": "CISA Known Exploited Vulnerabilities Catalog",
  "knownRansomwareCampaignUse": "Known",
  "product": "Internet Explorer and Edge",
  "vendorProject": "Microsoft",
  "vulnerabilityName": "Microsoft Internet Explorer and Edge Information Disclosure Vulnerability"
}
-