Multiple vulnerabilities in Microsoft Browser

Description

Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, obtain sensitive information.

Below is a complete list of vulnerabilities:

1. An use after free vulnerability in V8 can be exploited to cause denial of service or execute arbitrary code.
2. An use after free vulnerability in Safe Browsing can be exploited to cause denial of service or execute arbitrary code.
3. An information leak vulnerability in core component can be exploited to obtain sensitive information.

Original advisories

• CVE-2021-37975

• CVE-2021-37974
• CVE-2021-37976

Exploitation

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Related products

• Microsoft-Edge

CVE list

• CVE-2021-37975
  critical
• CVE-2021-37974
  critical
• CVE-2021-37976
  high

KB list

Read more

Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com