Problem: Unpatched zero-day vulnerabilities allow a remote attacker to bypass same origin policy in the web browsers.
Cause: An issue within Resource Timing Entries that leak Cross-Origin URL’s after redirection. More details are available here.
Solution: Use an alternative browser such as Firefox or Chrome. Microsoft does not have fix available at this time.
