Description
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions.
Below is a complete list of vulnerabilities:
- Use after free vulnerability in FedCM can be exploited to cause denial of service or execute arbitrary code.
- Use after free vulnerability in CSS can be exploited to cause denial of service or execute arbitrary code.
- Use after free vulnerability in libavif can be exploited to cause denial of service or execute arbitrary code.
- A security feature bypass vulnerability in Microsoft Edge (Chromium-based) can be exploited remotely to bypass security restrictions.
- Use after free vulnerability in WebRTC can be exploited to cause denial of service or execute arbitrary code.
- Type confusion vulnerability in V8 can be exploited to cause denial of service.
- Use after free vulnerability in Blink can be exploited to cause denial of service or execute arbitrary code.
Original advisories
Related products
CVE list
- CVE-2023-6704 unknown
- CVE-2023-6705 unknown
- CVE-2023-6702 unknown
- CVE-2023-6707 unknown
- CVE-2023-6703 unknown
- CVE-2023-6706 unknown
- CVE-2023-36878 warning
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com
Found an inaccuracy in the description of this vulnerability? Let us know!