46 results (0.005 seconds)

CVSS: 6.4EPSS: 0%CPEs: 1EXPL: 0

07 Mar 2025 — No cwe for this issue in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network. The UI performs the wrong action in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-26643 • CWE-449: The UI Performs the Wrong Action •

CVSS: 4.5EPSS: 0%CPEs: 1EXPL: 0

14 Feb 2025 — Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21401 • CWE-601: URL Redirection to Untrusted Site ('Open Redirect') •

CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0

06 Feb 2025 — Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21342 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •

CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0

06 Feb 2025 — Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21408 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •

CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0

06 Feb 2025 — Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21283 • CWE-1222: Insufficient Granularity of Address Regions Protected by Register Locks •

CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0

06 Feb 2025 — Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21279 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •

CVSS: 4.4EPSS: 0%CPEs: 1EXPL: 0

06 Feb 2025 — Microsoft Edge (Chromium-based) Spoofing Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21267 • CWE-358: Improperly Implemented Security Check for Standard •

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0

06 Feb 2025 — Microsoft Edge (Chromium-based) Spoofing Vulnerability This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Edge. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the way Microsoft Edge displays a warning about hazardous downloads. A crafted file name can cause the warning message to be displayed incorrectly, misleading the user into believ... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21404 • CWE-449: The UI Performs the Wrong Action CWE-451: User Interface (UI) Misrepresentation of Critical Information •

CVSS: 6.4EPSS: 0%CPEs: 1EXPL: 0

24 Jan 2025 — Microsoft Edge (Chromium-based) Spoofing Vulnerability User Interface (UI) Misrepresentation of Critical Information in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21262 • CWE-451: User Interface (UI) Misrepresentation of Critical Information •

CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0

17 Jan 2025 — Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21185 • CWE-284: Improper Access Control •