Description
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, gain privileges.
Below is a complete list of vulnerabilities:
- Heap buffer overflow vulnerability in ANGLE can be exploited to cause denial of service.
- Use after free vulnerability in Cast UI can be exploited to cause denial of service or execute arbitrary code.
- Use after free vulnerability in Chrome OS Shell can be exploited to cause denial of service or execute arbitrary code.
- Implementation vulnerability in Autofill can be exploited to cause denial of service.
- Implementation vulnerability in Full screen Mode can be exploited to cause denial of service.
- Type confusion vulnerability can be exploited to cause denial of service.
- Use after free vulnerability in WebShare can be exploited to cause denial of service or execute arbitrary code.
- Out of bounds memory access vulnerability in WebXR can be exploited to cause denial of service.
- Use after free vulnerability in Views can be exploited to cause denial of service or execute arbitrary code.
- Heap buffer overflow vulnerability in Cast UI can be exploited to cause denial of service.
- Data leak vulnerability in Canvas can be exploited to cause denial of service.
- Out of bounds memory access vulnerability in Mojo can be exploited to cause denial of service.
- Implementation vulnerability in HTML parser can be exploited to cause denial of service.
- Use after free vulnerability in Omnibox can be exploited to cause denial of service or execute arbitrary code.
- Use after free vulnerability in Media can be exploited to cause denial of service or execute arbitrary code.
- Use after free vulnerability in MediaStream can be exploited to cause denial of service or execute arbitrary code.
- Implementation vulnerability in Permissions can be exploited to cause denial of service.
- Out of bounds memory access vulnerability in ANGLE can be exploited to cause denial of service.
- Insufficient policy vulnerability in Installer can be exploited to cause denial of service.
- Use after free vulnerability in Browser Switcher can be exploited to cause denial of service or execute arbitrary code.
Original advisories
- CVE-2022-0790
- CVE-2022-0808
- CVE-2022-0807
- CVE-2022-0802
- CVE-2022-0795
- CVE-2022-0794
- CVE-2022-0809
- CVE-2022-0793
- CVE-2022-0800
- CVE-2022-0806
- CVE-2022-0797
- CVE-2022-0801
- CVE-2022-0791
- CVE-2022-0796
- CVE-2022-0798
- CVE-2022-0804
- CVE-2022-0803
- CVE-2022-0792
- CVE-2022-0799
- CVE-2022-0805
Related products
CVE list
- CVE-2022-0792 high
- CVE-2022-0807 high
- CVE-2022-0791 critical
- CVE-2022-0808 critical
- CVE-2022-0802 high
- CVE-2022-0805 critical
- CVE-2022-0803 high
- CVE-2022-0799 critical
- CVE-2022-0806 high
- CVE-2022-0798 critical
- CVE-2022-0794 critical
- CVE-2022-0795 critical
- CVE-2022-0796 critical
- CVE-2022-0800 critical
- CVE-2022-0804 high
- CVE-2022-0790 critical
- CVE-2022-0793 critical
- CVE-2022-0789 critical
- CVE-2022-0809 critical
- CVE-2022-0801 high
- CVE-2022-0797 critical
KB list
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com
Found an inaccuracy in the description of this vulnerability? Let us know!