Microsoft Edge Chromium

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

CVE-2024-26163 4.7 - Medium - March 14, 2024

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

CVE-2024-21399 8.3 - High - February 02, 2024

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2024-21388 6.5 - Medium - January 30, 2024

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Spoofing Vulnerability

CVE-2024-21336 2.5 - Low - January 26, 2024

Microsoft Edge (Chromium-based) Spoofing Vulnerability

Microsoft Edge for Android Spoofing Vulnerability

CVE-2024-21387 5.3 - Medium - January 26, 2024

Microsoft Edge for Android Spoofing Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2024-21385 8.3 - High - January 26, 2024

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Spoofing Vulnerability

CVE-2024-21383 3.3 - Low - January 26, 2024

Microsoft Edge (Chromium-based) Spoofing Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2024-21326 9.6 - Critical - January 26, 2024

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Acrobat Reader T5 (MSFT Edge) versions 120.0.2210.91 and earlier are affected by an Improper Input Validation vulnerability

CVE-2024-20721 5.5 - Medium - January 15, 2024

Acrobat Reader T5 (MSFT Edge) versions 120.0.2210.91 and earlier are affected by an Improper Input Validation vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Acrobat Reader T5 (MSFT Edge) versions 120.0.2210.91 and earlier are affected by an Improper Input Validation vulnerability

CVE-2024-20709 5.5 - Medium - January 15, 2024

Acrobat Reader T5 (MSFT Edge) versions 120.0.2210.91 and earlier are affected by an Improper Input Validation vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2024-21337 5.2 - Medium - January 11, 2024

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

CVE-2024-20675 6.3 - Medium - January 11, 2024

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

CVE-2023-36878 4.3 - Medium - December 15, 2023

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

Type confusion in V8 in Google Chrome prior to 120.0.6099.109

CVE-2023-6702 8.8 - High - December 14, 2023

Type confusion in V8 in Google Chrome prior to 120.0.6099.109 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

Object Type Confusion

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

CVE-2023-38174 4.3 - Medium - December 07, 2023

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

CVE-2023-36880 4.8 - Medium - December 07, 2023

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2023-35618 9.6 - Critical - December 07, 2023

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Integer overflow in Skia in Google Chrome prior to 119.0.6045.199

CVE-2023-6345 9.6 - Critical - November 29, 2023

Integer overflow in Skia in Google Chrome prior to 119.0.6045.199 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a malicious file. (Chromium security severity: High)

Integer Overflow or Wraparound

Microsoft Edge (Chromium-based) Spoofing Vulnerability

CVE-2023-36026 4.3 - Medium - November 16, 2023

Microsoft Edge (Chromium-based) Spoofing Vulnerability

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

CVE-2023-36008 6.6 - Medium - November 16, 2023

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2023-36027 6.3 - Medium - November 10, 2023

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2023-36024 7.1 - High - November 10, 2023

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

CVE-2023-36014 7.3 - High - November 10, 2023

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

CVE-2023-36409 6.5 - Medium - November 07, 2023

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

CVE-2023-36034 7.3 - High - November 03, 2023

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

CVE-2023-36022 6.6 - Medium - November 03, 2023

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

Adobe Acrobat for Edge version 118.0.2088.46 (and earlier) is affected by a Use After Free vulnerability

CVE-2023-44323 5.5 - Medium - October 30, 2023

Adobe Acrobat for Edge version 118.0.2088.46 (and earlier) is affected by a Use After Free vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Dangling pointer

Microsoft Edge (Chromium-based) Spoofing Vulnerability

CVE-2023-36559 4.2 - Medium - October 13, 2023

Microsoft Edge (Chromium-based) Spoofing Vulnerability

Heap buffer overflow in vp8 encoding in libvpx in Google Chrome prior to 117.0.5938.132 and libvpx 1.13.1

CVE-2023-5217 8.8 - High - September 28, 2023

Heap buffer overflow in vp8 encoding in libvpx in Google Chrome prior to 117.0.5938.132 and libvpx 1.13.1 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

Memory Corruption

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2023-36735 9.6 - Critical - September 15, 2023

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Spoofing Vulnerability

CVE-2023-36727 6.1 - Medium - September 15, 2023

Microsoft Edge (Chromium-based) Spoofing Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2023-36562 7.1 - High - September 15, 2023

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2023-36741 7.5 - High - August 26, 2023

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

CVE-2023-38158 3.1 - Low - August 21, 2023

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2023-36787 8.8 - High - August 21, 2023

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

CVE-2023-38157 6.5 - Medium - August 07, 2023

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2023-38187 6.5 - Medium - July 21, 2023

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge for Android Spoofing Vulnerability

CVE-2023-38173 4.3 - Medium - July 21, 2023

Microsoft Edge for Android Spoofing Vulnerability

Microsoft Edge (Chromium-based) Spoofing Vulnerability

CVE-2023-35392 4.7 - Medium - July 21, 2023

Microsoft Edge (Chromium-based) Spoofing Vulnerability

Microsoft Edge for Android (Chromium-based) Tampering Vulnerability

CVE-2023-36888 6.3 - Medium - July 14, 2023

Microsoft Edge for Android (Chromium-based) Tampering Vulnerability

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

CVE-2023-36887 7.8 - High - July 14, 2023

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

Object Type Confusion

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

CVE-2021-42307 4.3 - Medium - July 01, 2023

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

CVE-2021-34506 6.1 - Medium - July 01, 2023

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2021-34475 5.4 - Medium - July 01, 2023

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

CVE-2021-31982 8.8 - High - July 01, 2023

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

Microsoft Edge (Chromium-based) Spoofing Vulnerability

CVE-2022-23264 4.7 - Medium - June 29, 2023

Microsoft Edge (Chromium-based) Spoofing Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2022-26899 8.8 - High - June 29, 2023

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Spoofing Vulnerability

CVE-2022-29147 3.1 - Low - June 29, 2023

Microsoft Edge (Chromium-based) Spoofing Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2022-29146 8.3 - High - June 29, 2023

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2022-29144 7.5 - High - June 29, 2023

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2021-31937 8.2 - High - June 28, 2023

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

CVE-2023-33145 6.5 - Medium - June 14, 2023

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

CVE-2023-29345 6.1 - Medium - June 07, 2023

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

XSS

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2023-33143 7.5 - High - June 03, 2023

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

CVE-2023-29354 4.7 - Medium - May 05, 2023

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2023-29350 7.5 - High - May 05, 2023

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Spoofing Vulnerability

CVE-2023-29334 4.3 - Medium - April 28, 2023

Microsoft Edge (Chromium-based) Spoofing Vulnerability

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

CVE-2023-28286 6.1 - Medium - April 27, 2023

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2023-28261 5.7 - Medium - April 27, 2023

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Spoofing Vulnerability

CVE-2023-24935 6.1 - Medium - April 11, 2023

Microsoft Edge (Chromium-based) Spoofing Vulnerability

Open Redirect

Microsoft Edge (Chromium-based) Webview2 Spoofing Vulnerability

CVE-2023-24892 8.2 - High - March 14, 2023

Microsoft Edge (Chromium-based) Webview2 Spoofing Vulnerability

Open Redirect

Microsoft Edge (Chromium-based) Spoofing Vulnerability

CVE-2023-21794 4.3 - Medium - February 14, 2023

Microsoft Edge (Chromium-based) Spoofing Vulnerability

Authentication Bypass by Spoofing

Microsoft Edge (Chromium-based) Tampering Vulnerability

CVE-2023-21720 5.3 - Medium - February 14, 2023

Microsoft Edge (Chromium-based) Tampering Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2023-21796 8.3 - High - January 24, 2023

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2023-21795 8.3 - High - January 24, 2023

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

CVE-2023-21775 8.3 - High - January 24, 2023

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

CVE-2023-21719 6.5 - Medium - January 24, 2023

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

AuthZ

Microsoft Edge (Chromium-based) Update Elevation of Privilege Vulnerability

CVE-2022-41115 6.6 - Medium - December 13, 2022

Microsoft Edge (Chromium-based) Update Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Spoofing Vulnerability

CVE-2022-44688 4.3 - Medium - December 13, 2022

Microsoft Edge (Chromium-based) Spoofing Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2022-44708 8.3 - High - December 13, 2022

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Heap buffer overflow in GPU in Google Chrome prior to 107.0.5304.121

CVE-2022-4135 9.6 - Critical - November 25, 2022

Heap buffer overflow in GPU in Google Chrome prior to 107.0.5304.121 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

Memory Corruption

Microsoft Edge (Chromium-based) Spoofing Vulnerability

CVE-2022-41035 5.3 - Medium - October 11, 2022

Microsoft Edge (Chromium-based) Spoofing Vulnerability

Race Condition

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

CVE-2022-38012 7.7 - High - September 13, 2022

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

CVE-2022-33649 9.6 - Critical - August 09, 2022

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

CVE-2022-33636 8.3 - High - August 09, 2022

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

Race Condition

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2022-35796 7.5 - High - August 09, 2022

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Race Condition

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2022-33680 8.3 - High - July 07, 2022

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2022-33639 8.3 - High - June 29, 2022

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2022-33638 8.3 - High - June 29, 2022

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2022-30192 8.3 - High - June 29, 2022

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

CVE-2022-22021 8.3 - High - June 15, 2022

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2022-30128 8.3 - High - June 01, 2022

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Race Condition

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2022-30127 8.3 - High - June 01, 2022

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Race Condition

Microsoft Edge (Chromium-based) Spoofing Vulnerability

CVE-2022-26905 4.3 - Medium - June 01, 2022

Microsoft Edge (Chromium-based) Spoofing Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2022-26912 8.3 - High - April 05, 2022

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2022-26909 8.3 - High - April 05, 2022

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2022-26908 8.3 - High - April 05, 2022

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2022-26900 8.3 - High - April 05, 2022

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2022-26895 8.3 - High - April 05, 2022

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2022-26894 8.3 - High - April 05, 2022

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2022-26891 8.3 - High - April 05, 2022

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Spoofing Vulnerability

CVE-2022-24523 4.3 - Medium - April 05, 2022

Microsoft Edge (Chromium-based) Spoofing Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2022-24475 8.3 - High - April 05, 2022

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2022-23263 7.7 - High - February 07, 2022

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2022-23262 6.3 - Medium - February 07, 2022

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Tampering Vulnerability

CVE-2022-23261 5.3 - Medium - February 07, 2022

Microsoft Edge (Chromium-based) Tampering Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2022-21970 6.1 - Medium - January 11, 2022

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Improper Privilege Management

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2022-21954 6.1 - Medium - January 11, 2022

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

CVE-2022-21931 4.2 - Medium - January 11, 2022

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

CVE-2022-21930 4.2 - Medium - January 11, 2022

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability