Lösungen für:
Privatanwender
Unternehmen
Unternehmen
Unternehmen
Schwachstellen Bedrohungen
Home Schwachstellen

Multiple vulnerabilities in Microsoft Browser

Kaspersky ID:
KLA71043
Erkennungsdatum:
07/25/2024
Aktualisiert:
08/12/2024

Beschreibung

Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, execute arbitrary code, spoof user interface, obtain sensitive information.

Below is a complete list of vulnerabilities:

  1. Inappropriate implementation vulnerability in HTML can be exploited to cause denial of service.
  2. Insufficient validation of untrusted input vulnerability in Safe can be exploited to bypass security restrictions.
  3. Use after free vulnerability in Downloads can be exploited to cause denial of service or execute arbitrary code.
  4. Use after free vulnerability in Loader can be exploited to cause denial of service or execute arbitrary code.
  5. Use after free vulnerability in Tabs can be exploited to cause denial of service or execute arbitrary code.
  6. Denial of service vulnerability in Frames can be exploited remotely to cause denial of service.
  7. Use after free vulnerability in CSS can be exploited to cause denial of service or execute arbitrary code.
  8. Inappropriate implementation vulnerability in FedCM can be exploited to cause denial of service.
  9. Use after free vulnerability in User Education can be exploited to cause denial of service or execute arbitrary code.
  10. Use after free vulnerability in Dawn can be exploited to cause denial of service or execute arbitrary code.
  11. Heap buffer overflow vulnerability in Layout can be exploited to cause denial of service.
  12. Inappropriate implementation vulnerability in Fullscreen can be exploited to cause denial of service.
  13. An information disclosure vulnerability in Microsoft Edge (Chromium-based) can be exploited remotely to obtain sensitive information.
  14. A remote code execution vulnerability in Microsoft Edge (Chromium-based) can be exploited remotely to execute arbitrary code.
 
 

 

 

Ursprüngliche Informationshinweise

Betroffene Produkte

CVE Liste

  • CVE-2024-7001
    unknown
  • CVE-2024-7005
    unknown
  • CVE-2024-6988
    unknown
  • CVE-2024-6989
    unknown
  • CVE-2024-6997
    unknown
  • CVE-2024-6996
    unknown
  • CVE-2024-7000
    unknown
  • CVE-2024-6999
    unknown
  • CVE-2024-7004
    unknown
  • CVE-2024-6998
    unknown
  • CVE-2024-6991
    unknown
  • CVE-2024-7003
    unknown
  • CVE-2024-6994
    unknown
  • CVE-2024-6995
    unknown
  • CVE-2024-38103
    high
  • CVE-2024-39379
    high

KB Liste

Mehr erfahren

Informieren Sie sich über die Statistiken der in Ihrer Region verbreiteten Sicherheitslücken statistics.securelist.com

Sie haben einen Fehler in der Beschreibung der Schwachstelle gefunden? Mitteilen!
Kaspersky Next
Let´s go Next: Cybersicherheit neu gedacht
Erfahren Sie mehr
Neu: Kaspersky!
Dein digitales Leben verdient umfassenden Schutz!
Erfahren Sie mehr
Related articles
06 March 2026
Securelist
Exploits and vulnerabilities in Q4 2025
04 March 2026
Securelist
Mobile malware evolution in 2025
19 February 2026
Securelist
Arkanix Stealer: a C++ & Python infostealer
17 February 2026
Securelist
Divide and conquer: how the new Keenadu backdoor exposed links between major Android botnets
11 February 2026
Securelist
The game is over: when “free” comes at too high a price. What we know about RenEngine
11 February 2026
Securelist
Spam and phishing in 2025
Sie haben einen Fehler in der Beschreibung der Schwachstelle gefunden?
Falls Sie eine neue Bedrohung oder Schwachstelle gefunden haben, können Sie uns dies gerne per Mail mitteilen.
newvirus@kaspersky.com
Sie haben eine neue Bedrohung oder Schwachstelle gefunden?
Falls Sie eine neue Bedrohung oder Schwachstelle gefunden haben, können Sie uns dies gerne per Mail mitteilen.
newvirus@kaspersky.com
Lösungen für
Privatanwender
Unternehmen
Unternehmen
Unternehmen
Select language
Severity level
Critical
High
Warning
Sorting
Kaspersky ID
Schwachstellen
Detect date
Schweregrad
You must select at least one severity level
Do you want to save your changes?
Your message has been sent successfully.