Multiple vulnerabilities in Microsoft Browser

Описание

Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service.

Below is a complete list of vulnerabilities:

1. An use after free in Garbage Collection can be exploited to cause denial of service or execute arbitrary code.
2. Inappropriate implementation in Sandbox can be exploited to cause denial of service.
3. Heap buffer overflow vulnerability in Blink can be exploited to cause denial of service.
4. Heap buffer overflow vulnerability in WebRTC can be exploited to cause denial of service.

Первичный источник обнаружения

• CVE-2021-37978
  CVE-2021-37980
  CVE-2021-37979
  CVE-2021-37977
  

Эксплуатация

Public exploits exist for this vulnerability.

Связанные продукты

• Microsoft-Edge

Список CVE

• CVE-2021-37978
  high
• CVE-2021-37979
  high
• CVE-2021-37977
  high
• CVE-2021-37980
  warning

Список KB

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com