Multiple vulnerabilities in Microsoft Browser

Description

Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service.

Below is a complete list of vulnerabilities:

1. Use after free vulnerability in Dawn can be exploited to cause denial of service or execute arbitrary code.
2. Out of bounds write vulnerability in Streams API can be exploited to cause denial of service.
3. Out of bounds memory access vulnerability in Keyboard can be exploited to cause denial of service.
4. Use after free vulnerability in Media Session can be exploited to cause denial of service or execute arbitrary code.
5. Use after free vulnerability in Presentation API can be exploited to cause denial of service or execute arbitrary code.
6. Heap buffer overflow vulnerability in WebRTC can be exploited to cause denial of service.

Original advisories

• CVE-2024-5494

• CVE-2024-5499
• CVE-2024-5497
• CVE-2024-5496
• CVE-2024-5498
• CVE-2024-5495
• CVE-2024-5493

Related products

• Microsoft-Edge

CVE list

• CVE-2024-5495
  unknown
• CVE-2024-5497
  unknown
• CVE-2024-5493
  unknown
• CVE-2024-5494
  unknown
• CVE-2024-5499
  unknown
• CVE-2024-5496
  unknown
• CVE-2024-5498
  unknown

Read more

Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com