CISA description
Microsoft Silverlight does not properly validate pointers during access to Silverlight elements, which allows remote attackers to obtain sensitive information via a crafted Silverlight application.
CVE-2013-3896
Microsoft · Silverlight
Microsoft Silverlight Information Disclosure Vulnerability
Required action
The impacted product is end-of-life and should be disconnected if still in use.
Notes & references
Where this lands in 800-53
Vulnerability data triggers these controls during assessment and continuous monitoring.