CVE-2024-38219Type Confusion in Microsoft Edge

CWE-843Type Confusion4 documents4 sources
Severity
9.0CRITICALNVD
CNA6.5
EPSS
0.2%
top 57.58%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Microsoft EdgeMicrosoft Edge Chromium
Timeline
PublishedAug 12
Latest updateAug 13

Description

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:HExploitability: 2.2 | Impact: 6.0

Affected Packages2 packages

NVDmicrosoft/edge_chromium< 127.0.2651.98
CVEListV5microsoft/microsoft_edge1.0.0127.0.2651.98

Patches

Patch: msrc.microsoft.com

🔴Vulnerability Details

2
GHSA
GHSA-4q56-g7vf-vcvc: Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability2024-08-12
CVEList
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability2024-08-08

📋Vendor Advisories

1
Microsoft
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability2024-08-13
CVE-2024-38219 — Type Confusion in Microsoft Edge | cvebase