Multiple vulnerabilities in Microsoft Browser

Описание

Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code.

Below is a complete list of vulnerabilities:

1. Type confusion vulnerability in Spellcheck can be exploited to cause denial of service.
2. Use after free vulnerability in libavif can be exploited to cause denial of service or execute arbitrary code.
3. Use after free vulnerability in Mojo can be exploited to cause denial of service or execute arbitrary code.
4. Integer overflow vulnerability in Skia can be exploited to cause execute arbitrary code and denial of service.
5. Use after free vulnerability in WebAudio can be exploited to cause denial of service or execute arbitrary code.
6. Out of bounds memory access vulnerability in libavif can be exploited to cause denial of service.

Первичный источник обнаружения

• CVE-2023-6348
  CVE-2023-6351
  CVE-2023-6347
  CVE-2023-6345
  CVE-2023-6346
  CVE-2023-6350
  

Эксплуатация

Public exploits exist for this vulnerability.

Связанные продукты

• Microsoft-Edge

Список CVE

• CVE-2023-6348
  critical
• CVE-2023-6350
  critical
• CVE-2023-6351
  critical
• CVE-2023-6346
  critical
• CVE-2023-6345
  critical
• CVE-2023-6347
  critical

Список KB

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com