CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-29057 – Microsoft Edge (Chromium-based) Spoofing Vulnerability
https://notcve.org/view.php?id=CVE-2024-29057
Microsoft Edge (Chromium-based) Spoofing Vulnerability Vulnerabilidad de suplantación de identidad en Microsoft Edge (basado en Chromium) • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29057 • CWE-357: Insufficient UI Warning of Dangerous Operations •
CVSS: 4.7EPSS: 0%CPEs: 1EXPL: 0CVE-2024-26247 – Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2024-26247
Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability Vulnerabilidad de omisión de característica de seguridad de Microsoft Edge (basada en Chromium) • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26247 • CWE-269: Improper Privilege Management •
CVSS: 3.9EPSS: 0%CPEs: 1EXPL: 0CVE-2024-26246 – Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2024-26246
Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability Vulnerabilidad de omisión de característica de seguridad de Microsoft Edge (basada en Chromium) • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26246 • CWE-1220: Insufficient Granularity of Access Control •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-26196 – Microsoft Edge for Android (Chromium-based) Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-26196
Microsoft Edge for Android (Chromium-based) Information Disclosure Vulnerability Vulnerabilidad de divulgación de información en Microsoft Edge para Android (basado en Chromium) • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26196 • CWE-259: Use of Hard-coded Password •
CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 0CVE-2021-42797
https://notcve.org/view.php?id=CVE-2021-42797
Path traversal vulnerability in AVEVA Edge (formerly InduSoft Web Studio) versions R2020 and prior allows an unauthenticated user to steal the Windows access token of the user account configured for accessing external DB resources. Vulnerabilidad de path traversal en las versiones R2020 y anteriores de AVEVA Edge (anteriormente InduSoft Web Studio) permite que un usuario no autenticado robe el token de acceso de Windows de la cuenta de usuario configurada para acceder a recursos de base de datos externos. • https://www.aveva.com/en/products/edge https://www.cisa.gov/news-events/ics-advisories/icsa-22-326-01 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •