Page 2 of 46 results (0.007 seconds)

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0

06 Dec 2024 — Microsoft Edge (Chromium-based) Spoofing Vulnerability This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Edge. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the way Microsoft Edge prompts the user after a file is downloaded. A crafted file name can cause the true file extension to be hidden, misleading the user into believing that the... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49041 • CWE-449: The UI Performs the Wrong Action •

CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0

22 Nov 2024 — Microsoft Edge (Chromium-based) Spoofing Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49054 • CWE-357: Insufficient UI Warning of Dangerous Operations •

CVSS: 6.4EPSS: 0%CPEs: 1EXPL: 0

14 Nov 2024 — Microsoft Edge (Chromium-based) Information Disclosure Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49025 • CWE-359: Exposure of Private Personal Information to an Unauthorized Actor •

CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0

18 Oct 2024 — Microsoft Edge (Chromium-based) Spoofing Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43577 • CWE-449: The UI Performs the Wrong Action •

CVSS: 5.9EPSS: 0%CPEs: 1EXPL: 0

17 Oct 2024 — Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49023 • CWE-416: Use After Free •

CVSS: 9.7EPSS: 0%CPEs: 1EXPL: 0

17 Oct 2024 — Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43579 • CWE-122: Heap-based Buffer Overflow •

CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0

17 Oct 2024 — Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43596 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •

CVSS: 9.7EPSS: 0%CPEs: 1EXPL: 0

17 Oct 2024 — Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43578 • CWE-122: Heap-based Buffer Overflow •

CVSS: 8.1EPSS: 0%CPEs: 1EXPL: 0

17 Oct 2024 — Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43587 • CWE-122: Heap-based Buffer Overflow •

CVSS: 6.4EPSS: 0%CPEs: 1EXPL: 0

17 Oct 2024 — Microsoft Edge (Chromium-based) Spoofing Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43580 • CWE-357: Insufficient UI Warning of Dangerous Operations •