Microsoft Edge Chromium vulnerabilities

205 known vulnerabilities affecting microsoft/edge_chromium.

Total CVEs

205

CISA KEV

actively exploited

Public exploits

Exploited in wild

Severity breakdown

CRITICAL11HIGH97MEDIUM90LOW7

Vulnerabilities

Page 7 of 11

CVE-2023-24935MEDIUMCVSS 6.1fixed in 112.0.5615.492023-04-11

CVE-2023-24935 [MEDIUM] CWE-601 CVE-2023-24935: Microsoft Edge (Chromium-based) Spoofing Vulnerability Microsoft Edge (Chromium-based) Spoofing Vulnerability

nvd

CVE-2023-24892HIGHCVSS 8.2PoCfixed in 111.0.1661.412023-03-14

CVE-2023-24892 [HIGH] CWE-601 CVE-2023-24892: Microsoft Edge (Chromium-based) Webview2 Spoofing Vulnerability Microsoft Edge (Chromium-based) Webview2 Spoofing Vulnerability

nvd

CVE-2023-23374HIGHCVSS 8.3fixed in 110.0.1587.412023-02-14

CVE-2023-23374 [HIGH] CVE-2023-23374: Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

nvd

CVE-2023-21794MEDIUMCVSS 4.3fixed in 110.0.1587.412023-02-14

CVE-2023-21794 [MEDIUM] CWE-290 CVE-2023-21794: Microsoft Edge (Chromium-based) Spoofing Vulnerability Microsoft Edge (Chromium-based) Spoofing Vulnerability

nvd

CVE-2023-21720MEDIUMCVSS 5.3fixed in 109.0.15.18.782023-02-14

CVE-2023-21720 [MEDIUM] CWE-126 CVE-2023-21720: Microsoft Edge (Chromium-based) Tampering Vulnerability Microsoft Edge (Chromium-based) Tampering Vulnerability

nvd

CVE-2023-21795HIGHCVSS 8.3fixed in 109.0.1518.702023-01-24

CVE-2023-21795 [HIGH] CWE-416 CVE-2023-21795: Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

nvd

CVE-2023-21775HIGHCVSS 8.3fixed in 108.0.1462.95fixed in 109.0.1518.702023-01-24

CVE-2023-21775 [HIGH] CVE-2023-21775: Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

nvd

CVE-2023-21796HIGHCVSS 8.3fixed in 108.0.1462.952023-01-24

CVE-2023-21796 [HIGH] CVE-2023-21796: Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

nvd

CVE-2023-21719MEDIUMCVSS 6.5fixed in 109.0.1518.702023-01-24

CVE-2023-21719 [MEDIUM] CWE-863 CVE-2023-21719: Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

nvd

CVE-2022-44708HIGHCVSS 8.3fixed in 108.0.1462.412022-12-13

CVE-2022-44708 [HIGH] CVE-2022-44708: Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

nvd

CVE-2022-44688MEDIUMCVSS 4.3fixed in 108.0.1462.412022-12-13

CVE-2022-44688 [MEDIUM] CVE-2022-44688: Microsoft Edge (Chromium-based) Spoofing Vulnerability Microsoft Edge (Chromium-based) Spoofing Vulnerability

nvd

CVE-2022-41115MEDIUMCVSS 6.6fixed in 108.0.1462.412022-12-13

CVE-2022-41115 [MEDIUM] CVE-2022-41115: Microsoft Edge (Chromium-based) Update Elevation of Privilege Vulnerability Microsoft Edge (Chromium-based) Update Elevation of Privilege Vulnerability

nvd

CVE-2022-4135CRITICALCVSS 9.6KEVfixed in 107.0.5304.1502022-11-25

CVE-2022-4135 [CRITICAL] CWE-787 CVE-2022-4135: Heap buffer overflow in GPU in Google Chrome prior to 107.0.5304.121 allowed a remote attacker who h Heap buffer overflow in GPU in Google Chrome prior to 107.0.5304.121 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

nvd

CVE-2022-41035MEDIUMCVSS 5.3fixed in 106.0.1370.342022-10-11

CVE-2022-41035 [MEDIUM] CWE-362 CVE-2022-41035: Microsoft Edge (Chromium-based) Spoofing Vulnerability Microsoft Edge (Chromium-based) Spoofing Vulnerability

nvd

CVE-2022-38012HIGHCVSS 7.7v105.0.1343.252022-09-13

CVE-2022-38012 [HIGH] CVE-2022-38012: Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

nvd

CVE-2022-33649CRITICALCVSS 9.6fixed in 104.0.1293.472022-08-09

CVE-2022-33649 [CRITICAL] CVE-2022-33649: Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

nvd

CVE-2022-35796HIGHCVSS 7.5fixed in 104.0.1293.472022-08-09

CVE-2022-35796 [HIGH] CWE-362 CVE-2022-35796: Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

nvd

CVE-2022-33636HIGHCVSS 8.3fixed in 104.0.1293.472022-08-09

CVE-2022-33636 [HIGH] CWE-362 CVE-2022-33636: Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

nvd

CVE-2022-33680HIGHCVSS 8.3fixed in 103.0.1264.442022-07-07

CVE-2022-33680 [HIGH] CVE-2022-33680: Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

nvd

CVE-2022-30192HIGHCVSS 8.3fixed in 103.0.5060.532022-06-29

CVE-2022-30192 [HIGH] CVE-2022-30192: Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

nvd

← Previous7 / 11Next →