Multiple vulnerabilities in Microsoft Browser

Описание

Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, spoof user interface.

Below is a complete list of vulnerabilities:

1. Use after free vulnerability in GuestView can be exploited to cause denial of service or execute arbitrary code.
2. Use after free vulnerability in WebRTC can be exploited to cause denial of service or execute arbitrary code.
3. Type confusion vulnerability in ServiceWorker API can be exploited to cause denial of service.
4. Use after free vulnerability in WebTransport can be exploited to cause denial of service or execute arbitrary code.

Первичный источник обнаружения

• CVE-2023-0474
  CVE-2023-0472
  CVE-2023-0473
  CVE-2023-0471
  

Связанные продукты

• Microsoft-Edge

Список CVE

• CVE-2023-0474
  critical
• CVE-2023-0473
  critical
• CVE-2023-0472
  critical
• CVE-2023-0471
  critical

Список KB

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com