Descrição
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to spoof user interface, cause denial of service, execute arbitrary code, gain privileges.
Below is a complete list of vulnerabilities:
- Security UI vulnerability in Navigation can be exploited to spoof user interface.
- Out of bounds memory access vulnerability in DOM Bindings can be exploited to cause denial of service.
- Implementation vulnerability in Extensions can be exploited to cause denial of service.
- Heap buffer overflow vulnerability in Browser History can be exploited to cause denial of service.
- Use after free vulnerability in Vulkan can be exploited to cause denial of service or execute arbitrary code.
- Implementation vulnerability in FedCM can be exploited to cause denial of service.
- Use after free vulnerability in Frames can be exploited to cause denial of service or execute arbitrary code.
- Out of bounds read vulnerability in Accessibility can be exploited to cause denial of service.
- Validation of untrusted input vulnerability in Safe can be exploited to cause denial of service.
- Policy enforcement vulnerability in Intents can be exploited to cause denial of service.
- Heap buffer overflow vulnerability in Visuals can be exploited to cause denial of service.
- Use after free vulnerability in Networking APIs can be exploited to cause denial of service or execute arbitrary code.
- Implementation vulnerability in WebShare can be exploited to cause denial of service.
- Security UI vulnerability in Picture In Picture can be exploited to spoof user interface.
- A tampering vulnerability in Microsoft Edge (Chromium-based) can be exploited remotely to spoof user interface.
- A spoofing vulnerability in Microsoft Edge (Chromium-based) can be exploited remotely to spoof user interface.
Comunicados originais
- CVE-2023-1811
- CVE-2023-28301
- CVE-2023-1817
- CVE-2023-1816
- CVE-2023-1823
- CVE-2023-1812
- CVE-2023-1813
- CVE-2023-1815
- CVE-2023-24935
- CVE-2023-1818
- CVE-2023-1814
- CVE-2023-1820
- CVE-2023-1822
- CVE-2023-1810
- CVE-2023-1819
Produtos relacionados
Lista de CVE
- CVE-2023-1822 high
- CVE-2023-1812 critical
- CVE-2023-1813 high
- CVE-2023-1820 critical
- CVE-2023-1818 critical
- CVE-2023-1823 high
- CVE-2023-1811 critical
- CVE-2023-1819 high
- CVE-2023-1814 high
- CVE-2023-1817 high
- CVE-2023-1810 critical
- CVE-2023-1815 critical
- CVE-2023-1821 high
- CVE-2023-1816 high
- CVE-2023-28301 warning
- CVE-2023-24935 high
Lista de KB
Saiba mais
Descubra as estatísticas das vulnerabilidades que se espalham em sua região statistics.securelist.com
Encontrou uma imprecisão na descrição desta vulnerabilidade? Avise-nos!