Multiple vulnerabilities in Microsoft Browser

Описание

Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to spoof user interface, cause denial of service, obtain sensitive information, execute arbitrary code, bypass security restrictions.

Below is a complete list of vulnerabilities:

1. Implementation vulnerability in Navigation can be exploited to cause denial of service.
2. Out of bounds memory access vulnerability in Blink can be exploited to cause denial of service.
3. A spoofing vulnerability in Microsoft Edge (Chromium-based) can be exploited remotely to spoof user interface.
4. An information disclosure vulnerability in Microsoft Edge (Chromium-based) can be exploited remotely to obtain sensitive information.
5. Use after free vulnerability in Mojo can be exploited to cause denial of service or execute arbitrary code.
6. Implementation vulnerability in Site Isolation can be exploited to cause denial of service.
7. Use after free vulnerability in Accessibility can be exploited to cause denial of service or execute arbitrary code.
8. Policy enforcement vulnerability in Download can be exploited to cause denial of service.
9. Implementation vulnerability in Content Security Policy can be exploited to cause denial of service.

Первичный источник обнаружения

• CVE-2024-1676
  CVE-2024-1669
  CVE-2024-26188
  CVE-2024-21423
  CVE-2024-1670
  CVE-2024-26192
  CVE-2024-1674
  CVE-2024-1671
  CVE-2024-1673
  CVE-2024-1675
  CVE-2024-1672
  

Связанные продукты

• Microsoft-Edge

Список CVE

• CVE-2024-1672
  warning
• CVE-2024-1676
  warning
• CVE-2024-1674
  warning
• CVE-2024-1670
  warning
• CVE-2024-1675
  warning
• CVE-2024-1673
  warning
• CVE-2024-1671
  warning
• CVE-2024-1669
  warning
• CVE-2024-26188
  warning
• CVE-2024-21423
  warning
• CVE-2024-26192
  critical

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com