Description
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, spoof user interface, bypass security restrictions.
Below is a complete list of vulnerabilities:
- Out of bounds read vulnerability in Swiftshader can be exploited to cause denial of service.
- Implementation vulnerability in iOS can be exploited to cause denial of service.
- Use after free vulnerability in Canvas can be exploited to cause denial of service or execute arbitrary code.
- Security UI vulnerability in iOS can be exploited to spoof user interface.
- A security feature bypass vulnerability in Microsoft Edge (Chromium-based) can be exploited remotely to bypass security restrictions.
- A spoofing vulnerability in Microsoft Edge (Chromium-based) can be exploited remotely to spoof user interface.
- Object lifecycle issue in V8 can be exploited to bypass security restrictions.
- Implementation vulnerability in Downloads can be exploited to cause denial of service.
Original advisories
- CVE-2024-2630
- CVE-2024-2627
- CVE-2024-2631
- CVE-2024-2629
- CVE-2024-26247
- CVE-2024-29057
- CVE-2024-2625
- CVE-2024-2628
Related products
CVE list
- CVE-2024-2629 unknown
- CVE-2024-2627 unknown
- CVE-2024-2628 unknown
- CVE-2024-2626 unknown
- CVE-2024-2631 unknown
- CVE-2024-2630 unknown
- CVE-2024-2625 unknown
- CVE-2024-26247 warning
- CVE-2024-29057 warning
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com
Found an inaccuracy in the description of this vulnerability? Let us know!