Description
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, spoof user interface, bypass security restrictions.
Below is a complete list of vulnerabilities:
- Out of bounds read vulnerability in Swiftshader can be exploited to cause denial of service.
- Implementation vulnerability in iOS can be exploited to cause denial of service.
- Use after free vulnerability in Canvas can be exploited to cause denial of service or execute arbitrary code.
- Security UI vulnerability in iOS can be exploited to spoof user interface.
- A security feature bypass vulnerability in Microsoft Edge (Chromium-based) can be exploited remotely to bypass security restrictions.
- A spoofing vulnerability in Microsoft Edge (Chromium-based) can be exploited remotely to spoof user interface.
- Object lifecycle issue in V8 can be exploited to bypass security restrictions.
- Implementation vulnerability in Downloads can be exploited to cause denial of service.
Original advisories
- CVE-2024-2630
- CVE-2024-2627
- CVE-2024-2631
- CVE-2024-2629
- CVE-2024-26247
- CVE-2024-29057
- CVE-2024-2625
- CVE-2024-2628
Related products
CVE list
- CVE-2024-2629 warning
- CVE-2024-2627 critical
- CVE-2024-2628 warning
- CVE-2024-2626 high
- CVE-2024-2631 warning
- CVE-2024-2630 high
- CVE-2024-2625 critical
- CVE-2024-26247 warning
- CVE-2024-29057 warning
KB list
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com
Found an inaccuracy in the description of this vulnerability? Let us know!