CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0CVE-2023-36026 – Microsoft Edge (Chromium-based) Spoofing Vulnerability
https://notcve.org/view.php?id=CVE-2023-36026
16 Nov 2023 — Microsoft Edge (Chromium-based) Spoofing Vulnerability Vulnerabilidad de suplantación de identidad en Microsoft Edge (basado en Chromium) • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36026 •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2023-36027 – Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-36027
10 Nov 2023 — Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios en Microsoft Edge (basado en Chromium) • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36027 •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2023-36024 – Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-36024
09 Nov 2023 — Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios en Microsoft Edge (basado en Chromium) • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36024 • CWE-269: Improper Privilege Management •
CVSS: 10.0EPSS: 2%CPEs: 1EXPL: 0CVE-2023-36014 – Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-36014
09 Nov 2023 — Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código de Microsoft Edge (basado en Chromium) • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36014 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 6.5EPSS: 3%CPEs: 1EXPL: 0CVE-2023-36409 – Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2023-36409
06 Nov 2023 — Microsoft Edge (Chromium-based) Information Disclosure Vulnerability Vulnerabilidad de divulgación de información de Microsoft Edge (basado en Chromium) Multiple vulnerabilities have been discovered in Microsoft Edge, the worst of which could lead to remote code execution. Versions greater than or equal to 120.0.2210.61 are affected. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36409 •
CVSS: 10.0EPSS: 3%CPEs: 2EXPL: 0CVE-2023-36022 – Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-36022
03 Nov 2023 — Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código de Microsoft Edge (Chromium-based) Multiple vulnerabilities have been discovered in Microsoft Edge, the worst of which could lead to remote code execution. Versions greater than or equal to 120.0.2210.61 are affected. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36022 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 7.3EPSS: 3%CPEs: 2EXPL: 0CVE-2023-36034 – Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-36034
03 Nov 2023 — Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código de Microsoft Edge (Chromium-based) Multiple vulnerabilities have been discovered in Microsoft Edge, the worst of which could lead to remote code execution. Versions greater than or equal to 120.0.2210.61 are affected. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36034 • CWE-416: Use After Free •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-44323 – PDF Jbig2 memory-corruption Vulnerability - MSFT T5
https://notcve.org/view.php?id=CVE-2023-44323
30 Oct 2023 — Adobe Acrobat for Edge version 118.0.2088.46 (and earlier) is affected by a Use After Free vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Adobe Acrobat para Edge versión 118.0.2088.46 (y anteriores) se ve afectado por una vulnerabilidad use-after-free. Un atacante no autenticado podría aprovechar esta v... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-44323 • CWE-416: Use After Free •
CVSS: 4.2EPSS: 0%CPEs: 1EXPL: 0CVE-2023-36559 – Microsoft Edge (Chromium-based) Spoofing Vulnerability
https://notcve.org/view.php?id=CVE-2023-36559
13 Oct 2023 — Microsoft Edge (Chromium-based) Spoofing Vulnerability Vulnerabilidad de Suplantación de Identidad en Microsoft Edge (basado en Chromium) Multiple vulnerabilities have been discovered in Microsoft Edge, the worst of which could lead to remote code execution. Versions greater than or equal to 120.0.2210.61 are affected. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36559 •
CVSS: 10.0EPSS: 7%CPEs: 25EXPL: 2CVE-2023-5217 – Google Chromium libvpx Heap Buffer Overflow Vulnerability
https://notcve.org/view.php?id=CVE-2023-5217
28 Sep 2023 — Heap buffer overflow in vp8 encoding in libvpx in Google Chrome prior to 117.0.5938.132 and libvpx 1.13.1 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) El desbordamiento del búfer en la codificación vp8 en libvpx en Google Chrome anterior a 117.0.5938.132 y libvpx 1.13.1 permitía a un atacante remoto explotar potencialmente la corrupción del montón a través de una página HTML manipulada. (Severidad de seguridad de Chrome: alta) A... • https://github.com/UT-Security/cve-2023-5217-poc • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-787: Out-of-bounds Write •