Microsoft Edge Chromium

No cwe for this issue in Microsoft Edge (Chromium-based)

CVE-2025-29806 6.5 - Medium - March 23, 2025

No cwe for this issue in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

Object Type Confusion

The UI performs the wrong action in Microsoft Edge (Chromium-based)

CVE-2025-26643 5.4 - Medium - March 07, 2025

The UI performs the wrong action in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.

The UI Performs the Wrong Action

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

CVE-2025-21401 4.5 - Medium - February 15, 2025

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

Open Redirect

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

CVE-2025-21408 8.8 - High - February 06, 2025

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

Object Type Confusion

Microsoft Edge (Chromium-based) Spoofing Vulnerability

CVE-2025-21404 4.3 - Medium - February 06, 2025

Microsoft Edge (Chromium-based) Spoofing Vulnerability

The UI Performs the Wrong Action

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

CVE-2025-21342 8.8 - High - February 06, 2025

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

Object Type Confusion

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

CVE-2025-21283 8.8 - High - February 06, 2025

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

Insufficient Granularity of Address Regions Protected by Register Locks

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

CVE-2025-21279 8.8 - High - February 06, 2025

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

Object Type Confusion

Microsoft Edge (Chromium-based) Spoofing Vulnerability

CVE-2025-21267 4.4 - Medium - February 06, 2025

Microsoft Edge (Chromium-based) Spoofing Vulnerability

Improperly Implemented Security Check for Standard

User Interface (UI) Misrepresentation of Critical Information in Microsoft Edge (Chromium-based)

CVE-2025-21262 5.4 - Medium - January 24, 2025

User Interface (UI) Misrepresentation of Critical Information in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network

User Interface (UI) Misrepresentation of Critical Information

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2025-21185 6.5 - Medium - January 17, 2025

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Authorization

Microsoft Edge (Chromium-based) Spoofing Vulnerability

CVE-2024-49041 4.3 - Medium - December 06, 2024

Microsoft Edge (Chromium-based) Spoofing Vulnerability

The UI Performs the Wrong Action

Microsoft Edge (Chromium-based) Spoofing Vulnerability

CVE-2024-49054 - November 22, 2024

Microsoft Edge (Chromium-based) Spoofing Vulnerability

Insufficient UI Warning of Dangerous Operations

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

CVE-2024-49025 4.3 - Medium - November 14, 2024

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

Privacy violation

Microsoft Edge (Chromium-based) Spoofing Vulnerability

CVE-2024-43577 4.3 - Medium - October 18, 2024

Microsoft Edge (Chromium-based) Spoofing Vulnerability

The UI Performs the Wrong Action

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

CVE-2024-49023 5.3 - Medium - October 18, 2024

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

Dangling pointer

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

CVE-2024-43596 8.8 - High - October 17, 2024

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

Object Type Confusion

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

CVE-2024-43595 8.8 - High - October 17, 2024

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

CVE-2024-43587 8.1 - High - October 17, 2024

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

Heap-based Buffer Overflow

Microsoft Edge (Chromium-based) Spoofing Vulnerability

CVE-2024-43580 5.4 - Medium - October 17, 2024

Microsoft Edge (Chromium-based) Spoofing Vulnerability

Insufficient UI Warning of Dangerous Operations

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

CVE-2024-43579 8.3 - High - October 17, 2024

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

Heap-based Buffer Overflow

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

CVE-2024-43578 8.3 - High - October 17, 2024

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

Heap-based Buffer Overflow

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

CVE-2024-43566 9.8 - Critical - October 17, 2024

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

Integer Overflow or Wraparound

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

CVE-2024-43496 8.8 - High - September 19, 2024

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

Memory Corruption

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

CVE-2024-43489 8.8 - High - September 19, 2024

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

Object Type Confusion

Microsoft Edge (Chromium-based) Spoofing Vulnerability

CVE-2024-38221 4.3 - Medium - September 19, 2024

Microsoft Edge (Chromium-based) Spoofing Vulnerability

XSS

Microsoft Edge (HTML-based) Memory Corruption Vulnerability

CVE-2024-38207 6.3 - Medium - August 23, 2024

Microsoft Edge (HTML-based) Memory Corruption Vulnerability

Memory Corruption

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

CVE-2024-38210 7.8 - High - August 22, 2024

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

Out-of-bounds Read

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

CVE-2024-38209 7.8 - High - August 22, 2024

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

Object Type Confusion

Inappropriate implementation in V8 in Google Chrome prior to 128.0.6613.84

CVE-2024-7965 8.8 - High - August 21, 2024

Inappropriate implementation in V8 in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

Memory Corruption

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2024-43472 8.3 - High - August 16, 2024

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Dangling pointer

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

CVE-2024-38219 9 - Critical - August 12, 2024

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

Object Type Confusion

Microsoft Edge (HTML-based) Memory Corruption Vulnerability

CVE-2024-38218 7.8 - High - August 12, 2024

Microsoft Edge (HTML-based) Memory Corruption Vulnerability

Memory Corruption

Microsoft Edge (Chromium-based) Spoofing Vulnerability

CVE-2024-38083 4.3 - Medium - June 13, 2024

Microsoft Edge (Chromium-based) Spoofing Vulnerability

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

CVE-2024-30056 5.4 - Medium - May 25, 2024

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

Microsoft Edge (Chromium-based) Spoofing Vulnerability

CVE-2024-30055 5.4 - Medium - May 14, 2024

Microsoft Edge (Chromium-based) Spoofing Vulnerability

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

CVE-2024-29991 5 - Medium - April 19, 2024

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

CVE-2024-29987 - April 18, 2024

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

Microsoft Edge for Android (Chromium-based) Information Disclosure Vulnerability

CVE-2024-29986 5.4 - Medium - April 18, 2024

Microsoft Edge for Android (Chromium-based) Information Disclosure Vulnerability

Microsoft Edge (Chromium-based) Spoofing Vulnerability

CVE-2024-29981 4.3 - Medium - April 04, 2024

Microsoft Edge (Chromium-based) Spoofing Vulnerability

Clickjacking

Microsoft Edge (Chromium-based) Webview2 Spoofing Vulnerability

CVE-2024-29049 4.7 - Medium - April 04, 2024

Microsoft Edge (Chromium-based) Webview2 Spoofing Vulnerability

XSS

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

CVE-2024-26163 4.7 - Medium - March 14, 2024

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

CVE-2024-26192 8.2 - High - February 23, 2024

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

CVE-2024-21423 4.8 - Medium - February 23, 2024

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

CVE-2024-21399 8.3 - High - February 02, 2024

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2024-21388 6.5 - Medium - January 30, 2024

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Spoofing Vulnerability

CVE-2024-21336 2.5 - Low - January 26, 2024

Microsoft Edge (Chromium-based) Spoofing Vulnerability

Microsoft Edge for Android Spoofing Vulnerability

CVE-2024-21387 5.3 - Medium - January 26, 2024

Microsoft Edge for Android Spoofing Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2024-21385 8.3 - High - January 26, 2024

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Spoofing Vulnerability

CVE-2024-21383 3.3 - Low - January 26, 2024

Microsoft Edge (Chromium-based) Spoofing Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2024-21326 9.6 - Critical - January 26, 2024

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Acrobat Reader T5 (MSFT Edge) versions 120.0.2210.91 and earlier are affected by an Improper Input Validation vulnerability

CVE-2024-20721 5.5 - Medium - January 15, 2024

Acrobat Reader T5 (MSFT Edge) versions 120.0.2210.91 and earlier are affected by an Improper Input Validation vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Acrobat Reader T5 (MSFT Edge) versions 120.0.2210.91 and earlier are affected by an Improper Input Validation vulnerability

CVE-2024-20709 5.5 - Medium - January 15, 2024

Acrobat Reader T5 (MSFT Edge) versions 120.0.2210.91 and earlier are affected by an Improper Input Validation vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2024-21337 5.2 - Medium - January 11, 2024

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

CVE-2024-20675 6.3 - Medium - January 11, 2024

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

CVE-2023-36878 4.3 - Medium - December 15, 2023

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

Type confusion in V8 in Google Chrome prior to 120.0.6099.109

CVE-2023-6702 8.8 - High - December 14, 2023

Type confusion in V8 in Google Chrome prior to 120.0.6099.109 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

Object Type Confusion

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

CVE-2023-38174 4.3 - Medium - December 07, 2023

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

CVE-2023-36880 4.8 - Medium - December 07, 2023

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2023-35618 9.6 - Critical - December 07, 2023

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Integer overflow in Skia in Google Chrome prior to 119.0.6045.199

CVE-2023-6345 9.6 - Critical - November 29, 2023

Integer overflow in Skia in Google Chrome prior to 119.0.6045.199 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a malicious file. (Chromium security severity: High)

Integer Overflow or Wraparound

Microsoft Edge (Chromium-based) Spoofing Vulnerability

CVE-2023-36026 4.3 - Medium - November 16, 2023

Microsoft Edge (Chromium-based) Spoofing Vulnerability

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

CVE-2023-36008 6.6 - Medium - November 16, 2023

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2023-36027 6.3 - Medium - November 10, 2023

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2023-36024 7.1 - High - November 10, 2023

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

CVE-2023-36014 7.3 - High - November 10, 2023

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

CVE-2023-36409 6.5 - Medium - November 07, 2023

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

CVE-2023-36034 7.3 - High - November 03, 2023

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

CVE-2023-36022 6.6 - Medium - November 03, 2023

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

Adobe Acrobat for Edge version 118.0.2088.46 (and earlier) is affected by a Use After Free vulnerability

CVE-2023-44323 5.5 - Medium - October 30, 2023

Adobe Acrobat for Edge version 118.0.2088.46 (and earlier) is affected by a Use After Free vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Dangling pointer

Microsoft Edge (Chromium-based) Spoofing Vulnerability

CVE-2023-36559 4.2 - Medium - October 13, 2023

Microsoft Edge (Chromium-based) Spoofing Vulnerability

Heap buffer overflow in vp8 encoding in libvpx in Google Chrome prior to 117.0.5938.132 and libvpx 1.13.1

CVE-2023-5217 8.8 - High - September 28, 2023

Heap buffer overflow in vp8 encoding in libvpx in Google Chrome prior to 117.0.5938.132 and libvpx 1.13.1 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

Memory Corruption

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2023-36735 9.6 - Critical - September 15, 2023

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Spoofing Vulnerability

CVE-2023-36727 6.1 - Medium - September 15, 2023

Microsoft Edge (Chromium-based) Spoofing Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2023-36562 7.1 - High - September 15, 2023

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Heap buffer overflow in libwebp in Google Chrome prior to 116.0.5845.187 and libwebp 1.3.2

CVE-2023-4863 8.8 - High - September 12, 2023

Heap buffer overflow in libwebp in Google Chrome prior to 116.0.5845.187 and libwebp 1.3.2 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: Critical)

Memory Corruption

Type Confusion in V8 in Google Chrome prior to 116.0.5845.179 allowed a remote attacker to execute arbitrary code via a crafted HTML page

CVE-2023-4762 8.8 - High - September 05, 2023

Type Confusion in V8 in Google Chrome prior to 116.0.5845.179 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)

Object Type Confusion

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2023-36741 7.5 - High - August 26, 2023

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

CVE-2023-38158 3.1 - Low - August 21, 2023

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2023-36787 8.8 - High - August 21, 2023

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

CVE-2023-38157 6.5 - Medium - August 07, 2023

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2023-38187 6.5 - Medium - July 21, 2023

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge for Android Spoofing Vulnerability

CVE-2023-38173 4.3 - Medium - July 21, 2023

Microsoft Edge for Android Spoofing Vulnerability

Microsoft Edge (Chromium-based) Spoofing Vulnerability

CVE-2023-35392 4.7 - Medium - July 21, 2023

Microsoft Edge (Chromium-based) Spoofing Vulnerability

Microsoft Edge for Android (Chromium-based) Tampering Vulnerability

CVE-2023-36888 6.3 - Medium - July 14, 2023

Microsoft Edge for Android (Chromium-based) Tampering Vulnerability

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

CVE-2023-36887 7.8 - High - July 14, 2023

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

Object Type Confusion

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

CVE-2021-42307 4.3 - Medium - July 01, 2023

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

CVE-2021-34506 6.1 - Medium - July 01, 2023

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2021-34475 5.4 - Medium - July 01, 2023

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

CVE-2021-31982 8.8 - High - July 01, 2023

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

Microsoft Edge (Chromium-based) Spoofing Vulnerability

CVE-2022-23264 4.7 - Medium - June 29, 2023

Microsoft Edge (Chromium-based) Spoofing Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2022-26899 8.8 - High - June 29, 2023

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Spoofing Vulnerability

CVE-2022-29147 3.1 - Low - June 29, 2023

Microsoft Edge (Chromium-based) Spoofing Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2022-29146 8.3 - High - June 29, 2023

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2022-29144 7.5 - High - June 29, 2023

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2021-31937 8.2 - High - June 28, 2023

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

CVE-2023-33145 6.5 - Medium - June 14, 2023

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

CVE-2023-29345 6.1 - Medium - June 07, 2023

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

XSS

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2023-33143 7.5 - High - June 03, 2023

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

CVE-2023-29354 4.7 - Medium - May 05, 2023

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability