KLA50888
Multiple vulnerabilities in Microsoft Browser

Обновлено: 29/09/2023

Дата обнаружения	13/07/2023
Уровень угрозы	High
Описание	Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to spoof user interface, execute arbitrary code. Below is a complete list of vulnerabilities: A spoofing vulnerability in Microsoft Edge for iOS can be exploited remotely to spoof user interface. A remote code execution vulnerability in Microsoft Edge (Chromium-based) can be exploited remotely to execute arbitrary code. A tampering vulnerability in Microsoft Edge for Android (Chromium-based) can be exploited remotely to spoof user interface.
Эксплуатация	Public exploits exist for this vulnerability.
Пораженные продукты	Microsoft Edge for Android Microsoft Edge (Chromium-based) Microsoft Edge for iOS
Решение	Install necessary updates from the Settings and more menu, that are listed in your About Microsoft Edge page (Microsoft Edge About page usually can be accessed from the Help and feedback option) Microsoft Edge update settings
Первичный источник обнаружения	CVE-2023-36883 CVE-2023-36887 CVE-2023-36888
Оказываемое влияние ?	ACE [?] SUI [?]
Связанные продукты	Microsoft Edge
CVE-IDS	CVE-2023-368835.0Warning CVE-2023-368875.0Warning CVE-2023-368885.0Warning

KLA50888Multiple vulnerabilities in Microsoft Browser