CVE-2020-1056
published 2020-05-21CVE-2020-1056: An elevation of privilege vulnerability exists when Microsoft Edge does not properly enforce cross-domain policies, which could allow an attacker to access…
high8.1CVSS 3.1
AVNACLPRNUIRSUCHIHAN
An elevation of privilege vulnerability exists when Microsoft Edge does not properly enforce cross-domain policies, which could allow an attacker to access information from one domain and inject it into another domain.In a web-based attack scenario, an attacker could host a website that is used to attempt to exploit the vulnerability, aka 'Microsoft Edge Elevation of Privilege Vulnerability'.
Affected
38 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | microsoft_edge_on_windows_10_version_1607_for_32-bit_systems | — | — |
| microsoft | microsoft_edge_on_windows_10_version_1607_for_x64-based_systems | — | — |
| microsoft | microsoft_edge_on_windows_10_version_1709_for_32-bit_systems | — | — |
| microsoft | microsoft_edge_on_windows_10_version_1709_for_arm64-based_systems | — | — |
| microsoft | microsoft_edge_on_windows_10_version_1709_for_x64-based_systems | — | — |
| microsoft | microsoft_edge_on_windows_10_version_1803_for_32-bit_systems | — | — |
| microsoft | microsoft_edge_on_windows_10_version_1803_for_arm64-based_systems | — | — |
| microsoft | microsoft_edge_on_windows_10_version_1803_for_x64-based_systems | — | — |
| microsoft | microsoft_edge_on_windows_10_version_1809_for_32-bit_systems | — | — |
| microsoft | microsoft_edge_on_windows_10_version_1809_for_arm64-based_systems | — | — |
| microsoft | microsoft_edge_on_windows_10_version_1809_for_x64-based_systems | — | — |
| microsoft | microsoft_edge_on_windows_10_version_1903_for_32-bit_systems | — | — |
| microsoft | microsoft_edge_on_windows_10_version_1903_for_arm64-based_systems | — | — |
| microsoft | microsoft_edge_on_windows_10_version_1903_for_x64-based_systems | — | — |
| microsoft | microsoft_edge_on_windows_10_version_1909_for_32-bit_systems | — | — |
| microsoft | microsoft_edge_on_windows_10_version_1909_for_arm64-based_systems | — | — |
| microsoft | microsoft_edge_on_windows_10_version_1909_for_x64-based_systems | — | — |
| microsoft | microsoft_edge_on_windows_server_2016 | — | — |
| microsoft | microsoft_edge_on_windows_server_2019 | — | — |
| msrc | microsoft_edge_on_windows_10_version_1607_for_32-bit_systems | — | — |
| msrc | microsoft_edge_on_windows_10_version_1607_for_x64-based_systems | — | — |
| msrc | microsoft_edge_on_windows_10_version_1709_for_32-bit_systems | — | — |
| msrc | microsoft_edge_on_windows_10_version_1709_for_arm64-based_systems | — | — |
| msrc | microsoft_edge_on_windows_10_version_1709_for_x64-based_systems | — | — |
| msrc | microsoft_edge_on_windows_10_version_1803_for_32-bit_systems | — | — |