CVE-2017-0022

Microsoft XML Core Services (MSXML) improperly handles objects in memory, allowing attackers to test for files on disk via a crafted web site. Vendor/Product: Microsoft XML Core Services. Added to CISA KEV 2022-05-24; required action: Apply updates per vendor instructions.