Microsoft Edge vulnerabilities
411 known vulnerabilities affecting microsoft/microsoft_edge.
Total CVEs
411
CISA KEV
2
actively exploited
Public exploits
26
Exploited in wild
4
Severity breakdown
CRITICAL7HIGH244MEDIUM152LOW8
Vulnerabilities
Page 15 of 21
CVE-2019-0605HIGHCVSS 7.5vWindows 10 for 32-bit SystemsvWindows 10 for x64-based Systems+15 more2019-03-06
CVE-2019-0605 [HIGH] CVE-2019-0605: A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge, aka 'Scripting Engine M
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0590, CVE-2019-0591, CVE-2019-0593, CVE-2019-0607, CVE-2019-0610, CVE-2019-0640, CVE-2019-0642
cvelistv5
CVE-2019-0652HIGHCVSS 7.5vWindows 10 for 32-bit SystemsvWindows 10 for x64-based Systems+15 more2019-03-06
CVE-2019-0652 [HIGH] CVE-2019-0652: A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge, aka 'Scripting Engine M
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0590, CVE-2019-0591, CVE-2019-0593, CVE-2019-0605, CVE-2019-0607, CVE-2019-0610, CVE-2019-0640
cvelistv5
CVE-2019-0607HIGHCVSS 7.5vWindows 10 Version 1709 for 32-bit SystemsvWindows 10 Version 1709 for x64-based Systems+8 more2019-03-06
CVE-2019-0607 [HIGH] CVE-2019-0607: A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge, aka 'Scripting Engine M
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0590, CVE-2019-0591, CVE-2019-0593, CVE-2019-0605, CVE-2019-0610, CVE-2019-0640, CVE-2019-0642
cvelistv5
CVE-2019-0644HIGHCVSS 7.5vWindows Server 2016vWindows 10 Version 1607 for 32-bit Systems+13 more2019-03-06
CVE-2019-0644 [HIGH] CVE-2019-0644: A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge, aka 'Scripting Engine M
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0590, CVE-2019-0591, CVE-2019-0593, CVE-2019-0605, CVE-2019-0607, CVE-2019-0610, CVE-2019-0640
cvelistv5
CVE-2019-0610HIGHCVSS 7.5vWindows 10 Version 1703 for 32-bit SystemsvWindows 10 Version 1703 for x64-based Systems+10 more2019-03-06
CVE-2019-0610 [HIGH] CVE-2019-0610: A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge, aka 'Scripting Engine M
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0590, CVE-2019-0591, CVE-2019-0593, CVE-2019-0605, CVE-2019-0607, CVE-2019-0640, CVE-2019-0642
cvelistv5
CVE-2019-0591HIGHCVSS 7.5vWindows 10 for 32-bit SystemsvWindows 10 for x64-based Systems+15 more2019-03-06
CVE-2019-0591 [HIGH] CVE-2019-0591: A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge, aka 'Scripting Engine M
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0590, CVE-2019-0593, CVE-2019-0605, CVE-2019-0607, CVE-2019-0610, CVE-2019-0640, CVE-2019-0642
cvelistv5
CVE-2019-0658MEDIUMCVSS 4.3vWindows 10 Version 1703 for 32-bit SystemsvWindows 10 Version 1703 for x64-based Systems+10 more2019-03-06
CVE-2019-0658 [MEDIUM] CVE-2019-0658: An information disclosure vulnerability exists when the scripting engine does not properly handle objects in memory in Microsoft Edge, aka 'Scripting
An information disclosure vulnerability exists when the scripting engine does not properly handle objects in memory in Microsoft Edge, aka 'Scripting Engine Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0648.
cvelistv5
CVE-2019-0590HIGHCVSS 7.5vWindows 10 for 32-bit SystemsvWindows 10 for x64-based Systems+15 more2019-03-05
CVE-2019-0590 [HIGH] CWE-787 CVE-2019-0590: A remote code execution vulnerability exists in the way that the scripting engine handles objects in
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0591, CVE-2019-0593, CVE-2019-0605, CVE-2019-0607, CVE-2019-0610, CVE-2019-0640, CVE-2019-0642, CVE-2019-0644, CVE-2019-0651, CVE-2019-0
cvelistv5nvd
CVE-2019-0634HIGHCVSS 7.5vWindows 10 Version 1803 for 32-bit SystemsvWindows 10 Version 1803 for x64-based Systems+5 more2019-03-05
CVE-2019-0634 [HIGH] CWE-787 CVE-2019-0634: A remote code execution vulnerability exists when Microsoft Edge improperly accesses objects in memo
A remote code execution vulnerability exists when Microsoft Edge improperly accesses objects in memory, aka 'Microsoft Edge Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0645, CVE-2019-0650.
cvelistv5nvd
CVE-2019-0649HIGHCVSS 8.1vWindows 10 Version 1703 for 32-bit SystemsvWindows 10 Version 1703 for x64-based Systems+10 more2019-03-05
CVE-2019-0649 [HIGH] CVE-2019-0649: A vulnerability exists in Microsoft Chakra JIT server, aka 'Scripting Engine Elevation of Privileged
A vulnerability exists in Microsoft Chakra JIT server, aka 'Scripting Engine Elevation of Privileged Vulnerability'.
cvelistv5nvd
CVE-2019-0643MEDIUMCVSS 4.3vWindows 10 Version 1809 for 32-bit SystemsvWindows 10 Version 1809 for x64-based Systems+2 more2019-03-05
CVE-2019-0643 [MEDIUM] CVE-2019-0643: An information disclosure vulnerability exists in the way that Microsoft Edge handles cross-origin r
An information disclosure vulnerability exists in the way that Microsoft Edge handles cross-origin requests, aka 'Microsoft Edge Information Disclosure Vulnerability'.
cvelistv5nvd
CVE-2019-0641MEDIUMCVSS 5.9vWindows 10 Version 1703 for 32-bit SystemsvWindows 10 Version 1703 for x64-based Systems+10 more2019-03-05
CVE-2019-0641 [MEDIUM] CVE-2019-0641: A security feature bypass vulnerability exists in Microsoft Edge handles whitelisting, aka 'Microsof
A security feature bypass vulnerability exists in Microsoft Edge handles whitelisting, aka 'Microsoft Edge Security Feature Bypass Vulnerability'.
cvelistv5nvd
CVE-2019-0648MEDIUMCVSS 4.3vWindows 10 Version 1703 for 32-bit SystemsvWindows 10 Version 1703 for x64-based Systems+10 more2019-03-05
CVE-2019-0648 [MEDIUM] CVE-2019-0648: An information disclosure vulnerability exists when Chakra improperly discloses the contents of its
An information disclosure vulnerability exists when Chakra improperly discloses the contents of its memory, which could provide an attacker with information to further compromise the user's computer or data.To exploit the vulnerability, an attacker must know the memory address of where the object was created.The update addresses the vulnerability by changing t
cvelistv5nvd
CVE-2019-0654MEDIUMCVSS 4.3vWindows 10 for 32-bit SystemsvWindows 10 for x64-based Systems+15 more2019-03-05
CVE-2019-0654 [MEDIUM] CVE-2019-0654: A spoofing vulnerability exists when Microsoft browsers improperly handles specific redirects, aka '
A spoofing vulnerability exists when Microsoft browsers improperly handles specific redirects, aka 'Microsoft Browser Spoofing Vulnerability'.
cvelistv5nvd
CVE-2019-0539HIGHCVSS 7.5PoCvWindows 10 Version 1803 for 32-bit SystemsvWindows 10 Version 1803 for ARM64-based Systems+5 more2019-01-08
CVE-2019-0539 [HIGH] CWE-787 CVE-2019-0539: A remote code execution vulnerability exists in the way that the Chakra scripting engine handles obj
A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2019-0567, CVE-2019-0568.
cvelistv5nvd
CVE-2019-0567HIGHCVSS 7.5PoCvWindows 10 for 32-bit SystemsvWindows 10 for x64-based Systems+15 more2019-01-08
CVE-2019-0567 [HIGH] CVE-2019-0567: A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scri
A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2019-0539, CVE-2019-0568.
cvelistv5
CVE-2019-0566HIGHCVSS 8.8PoCvWindows 10 for 32-bit SystemsvWindows 10 for x64-based Systems+15 more2019-01-08
CVE-2019-0566 [HIGH] CWE-862 CVE-2019-0566: An elevation of privilege vulnerability exists in Microsoft Edge Browser Broker COM object, aka "Mic
An elevation of privilege vulnerability exists in Microsoft Edge Browser Broker COM object, aka "Microsoft Edge Elevation of Privilege Vulnerability." This affects Microsoft Edge.
cvelistv5nvd
CVE-2019-0565HIGHCVSS 7.5vWindows 10 Version 1803 for 32-bit SystemsvWindows 10 Version 1803 for ARM64-based Systems+5 more2019-01-08
CVE-2019-0565 [HIGH] CWE-787 CVE-2019-0565: A remote code execution vulnerability exists when Microsoft Edge improperly accesses objects in memo
A remote code execution vulnerability exists when Microsoft Edge improperly accesses objects in memory, aka "Microsoft Edge Memory Corruption Vulnerability." This affects Microsoft Edge.
cvelistv5nvd
CVE-2019-0568HIGHCVSS 7.5PoCvWindows 10 Version 1803 for 32-bit SystemsvWindows 10 Version 1803 for ARM64-based Systems+5 more2019-01-08
CVE-2019-0568 [HIGH] CVE-2019-0568: A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scri
A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2019-0539, CVE-2019-0567.
cvelistv5
CVE-2018-8624HIGHCVSS 7.5vWindows 10 Version 1607 for 32-bit SystemsvWindows 10 Version 1607 for x64-based Systems+13 more2018-12-12
CVE-2018-8624 [HIGH] CVE-2018-8624: A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scri
A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8583, CVE-2018-8617, CVE-2018-8618, CVE
cvelistv5