Skip to main content

Microsoft Edge Multiple Vulnerabilities

Release Date: 13 Jan 2023 6164 Views

RISK: High Risk

TYPE: Clients - Browsers

TYPE: Browsers

Multiple vulnerabilities were identified in Microsoft Edge. A remote attacker could exploit some of these vulnerabilities to trigger elevation of privilege, denial of service condition, remote code execution, information disclosure and security restriction bypass on the targeted system.

 

Note:

Proof of Concept exploit code is publicly available for CVE-2023-21775.


Impact

  • Denial of Service
  • Remote Code Execution
  • Information Disclosure
  • Security Restriction Bypass
  • Elevation of Privilege

System / Technologies affected

  • Microsoft Edge prior to 109.0.1518.49

Solutions

Before installation of the software, please visit the software vendor web-site for more details.

Apply fixes issued by the vendor:

  • Update to version 109.0.1518.49 or later

Vulnerability Identifier


Source


Related Link