Описание
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions, spoof user interface, gain privileges.
Below is a complete list of vulnerabilities:
- Use after free vulnerability in PDF can be exploited to cause denial of service or execute arbitrary code.
- A security feature bypass vulnerability in Microsoft Edge (Chromium-based) can be exploited remotely to bypass security restrictions.
- Out of bounds write vulnerability in Swiftshader can be exploited to cause denial of service.
- Out of bounds memory access vulnerability in Mojo can be exploited to cause denial of service.
- Type confusion vulnerability in V8 can be exploited to cause denial of service.
- Implementation vulnerability in Extensions API can be exploited to cause denial of service.
- Implementation vulnerability in Downloads can be exploited to cause denial of service.
- Implementation vulnerability in Picture In Picture can be exploited to cause denial of service.
- Use after free vulnerability in Extensions can be exploited to cause denial of service or execute arbitrary code.
- An elevation of privilege vulnerability in Microsoft Edge (Chromium-based) can be exploited remotely to gain privileges.
- Data validation vulnerability in Installer can be exploited to cause denial of service.
Первичный источник обнаружения
- CVE-2023-29345
CVE-2023-2941
CVE-2023-2940
CVE-2023-2938
CVE-2023-33143
CVE-2023-2937
CVE-2023-2932
CVE-2023-2929
CVE-2023-2934
CVE-2023-2936
CVE-2023-2935
CVE-2023-2930
CVE-2023-2931
CVE-2023-2933
CVE-2023-2939
Эксплуатация
Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.
Связанные продукты
Список CVE
- CVE-2023-2929 critical
- CVE-2023-2941 warning
- CVE-2023-2937 warning
- CVE-2023-2932 critical
- CVE-2023-2940 high
- CVE-2023-2935 critical
- CVE-2023-2930 critical
- CVE-2023-2939 critical
- CVE-2023-2934 critical
- CVE-2023-2938 warning
- CVE-2023-2933 critical
- CVE-2023-2936 critical
- CVE-2023-2931 critical
- CVE-2023-29345 high
- CVE-2023-33143 critical
Список KB
Смотрите также
Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com
Нашли неточность в описании этой уязвимости? Дайте нам знать!