Microsoft Corporation Microsoft Edge vulnerabilities
31 known vulnerabilities affecting microsoft_corporation/microsoft_edge.
Total CVEs
31
CISA KEV
0
Public exploits
5
Exploited in wild
0
Severity breakdown
HIGH15MEDIUM15LOW1
Vulnerabilities
Page 1 of 2
CVE-2018-0758P2HIGHCVSS 7.5PoCvWindows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016.2018-01-04
CVE-2018-0758 [HIGH] CWE-787 CVE-2018-0758: Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacke
Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0762, CVE-2018-0768, CVE-2018-0769, CVE-
nvd
CVE-2017-11764P2HIGHCVSS 7.5PoCvMicrosoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016.2017-09-13
CVE-2017-11764 [HIGH] CWE-119 CVE-2017-11764: Microsoft Edge in Microsoft Windows 10 1607, 1703, and Windows Server 2016 allows an attacker to exe
Microsoft Edge in Microsoft Windows 10 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to the way that the Microsoft Edge scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-8649, CVE-2017-8660, C
nvd
CVE-2017-8496P2HIGHCVSS 7.5PoCvMicrosoft Windows 10 1607 and Windows Server 2016.2017-06-15
CVE-2017-8496 [HIGH] CWE-119 CVE-2017-8496: Microsoft Edge in Windows 10 1607 and Windows Server 2016 allows an attacker to execute arbitrary co
Microsoft Edge in Windows 10 1607 and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user when Microsoft Edge improperly accesses objects in memory, aka "Microsoft Edge Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-8497.
nvd
CVE-2018-0767P3MEDIUMCVSS 5.3PoCvMicrosoft Windows 10 17092018-01-04
CVE-2018-0767 [MEDIUM] CWE-125 CVE-2018-0767: Microsoft Edge in Microsoft Windows 10 1511, 1607, 1703, 1709, and Windows Server 2016 allows an att
Microsoft Edge in Microsoft Windows 10 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to obtain information to further compromise the user's system, due to how the scripting engine handles objects in memory, aka "Scripting Engine Information Disclosure Vulnerability". This CVE ID is unique from CVE-2018-0780 and CVE-2018-0800.
nvd
CVE-2017-0266P3HIGHCVSS 7.5vWindows 10 Version 1511 for 32-bit Systems, Windows 10 Version 1511 for x64-based Systems, Windows 10 Version 1607 for 32-bit Systems, Windows 10 Version 1607 for x64-based Systems, Windows 10 Version 1703 for 32-bit Systems, and Windows 10 Version 1703 for x64-based Systems.2017-05-12
CVE-2017-0266 [HIGH] CWE-119 CVE-2017-0266: A remote code execution vulnerability exists in Microsoft Edge in the way affected Microsoft scripti
A remote code execution vulnerability exists in Microsoft Edge in the way affected Microsoft scripting engines render when handling objects in memory, aka "Microsoft Edge Remote Code Execution Vulnerability."
nvd
CVE-2017-8644P3MEDIUMCVSS 4.3PoCvMicrosoft Windows 10 1703.2017-08-08
CVE-2017-8644 [MEDIUM] CWE-200 CVE-2017-8644: Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an att
Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to disclose information due to the way that Microsoft Edge handles objects in memory, aka "Microsoft Edge Information Disclosure Vulnerability". This CVE ID is unique from CVE-2017-8652 and CVE-2017-8662.
nvd
CVE-2017-8757P3HIGHCVSS 7.5vMicrosoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016.2017-09-13
CVE-2017-8757 [HIGH] CWE-119 CVE-2017-8757: Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an att
Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to the way Microsoft Edge handles objects in memory, aka "Microsoft Edge Remote Code Execution Vulnerability".
nvd
CVE-2017-8518P3HIGHCVSS 7.5vWindows 10 Gold, Windows 10 1511, Windows 10 1607, Windows 10 1703, Windows Server 2016, Chakra Core2017-08-10
CVE-2017-8518 [HIGH] CWE-119 CVE-2017-8518: Microsoft Edge allows a remote code execution vulnerability due to the way it accesses objects in me
Microsoft Edge allows a remote code execution vulnerability due to the way it accesses objects in memory, aka "Scripting Engine Memory Corruption Vulnerability".
nvd
CVE-2017-11766P3HIGHCVSS 7.5vMicrosoft Windows 10 17032017-09-13
CVE-2017-11766 [HIGH] CWE-119 CVE-2017-11766: Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an att
Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to the way that Microsoft Edge accesses objects in memory, aka "Microsoft Edge Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-8731, CVE-2017-8734, and CVE-201
nvd
CVE-2017-11888P3HIGHCVSS 7.5vMicrosoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016.2017-12-12
CVE-2017-11888 [HIGH] CWE-119 CVE-2017-11888: Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows
Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to how Microsoft Edge handles objects in memory, aka "Microsoft Edge Memory Corruption Vulnerability".
nvd
CVE-2017-11845P3HIGHCVSS 7.5vMicrosoft Windows 10 1703.2017-11-15
CVE-2017-11845 [HIGH] CWE-119 CVE-2017-11845: Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to execute arbitrary code in the cont
Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to execute arbitrary code in the context of the current user, due to how Microsoft Edge handles objects in memory, aka "Microsoft Edge Memory Corruption Vulnerability".
nvd
CVE-2017-8499P3HIGHCVSS 7.5vMicrosoft Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016.2017-06-15
CVE-2017-8499 [HIGH] CWE-119 CVE-2017-8499: Microsoft Edge in Windows 10 1703 allows an attacker to execute arbitrary code in the context of the
Microsoft Edge in Windows 10 1703 allows an attacker to execute arbitrary code in the context of the current user when the Edge JavaScript scripting engine fails to handle objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-8520, CVE-2017-8521, CVE-2017-8548, and CVE-2017-8549.
nvd
CVE-2018-0879P3HIGHCVSS 7.5vWindows 10 17092018-03-14
CVE-2018-0879 [HIGH] CWE-200 CVE-2018-0879: Microsoft Edge in Windows 10 1709 allows information disclosure, due to how Edge handles objects in
Microsoft Edge in Windows 10 1709 allows information disclosure, due to how Edge handles objects in memory, aka "Microsoft Edge Information Disclosure Vulnerability".
nvd
CVE-2017-8661P3HIGHCVSS 7.5vMicrosoft Windows 10 1607, 1703, and Windows Server 2016.2017-08-08
CVE-2017-8661 [HIGH] CWE-119 CVE-2017-8661: Microsoft Edge in Microsoft Windows 10 1607, 1703, and Windows Server 2016 allows an attacker to exe
Microsoft Edge in Microsoft Windows 10 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user due to the way affected Microsoft scripting engines render when handling objects in memory, aka "Microsoft Edge Memory Corruption Vulnerability".
nvd
CVE-2017-8503P3HIGHCVSS 8.8vMicrosoft Windows 10 1703.2017-08-08
CVE-2017-8503 [HIGH] CVE-2017-8503: Microsoft Edge in Microsoft Windows 10 1511, 1607, 1703, and Windows Server 2016 allows an attacker
Microsoft Edge in Microsoft Windows 10 1511, 1607, 1703, and Windows Server 2016 allows an attacker to escape from the AppContainer sandbox, aka "Microsoft Edge Elevation of Privilege Vulnerability". This CVE ID is unique from CVE-2017-8642.
nvd
CVE-2017-0233P3HIGHCVSS 8.3vWindows 10 for 32-bit Systems, Windows 10 for x64-based Systems, Windows 10 Version 1511 for 32-bit Systems, Windows 10 Version 1511 for x64-based Systems, Windows 10 Version 1607 for 32-bit Systems, Windows 10 Version 1607 for x64-based Systems, Windows 10 Version 1703 for 32-bit Systems, and Windows 10 Version 1703 for x64-based Systems.2017-05-12
CVE-2017-0233 [HIGH] CVE-2017-0233: An elevation of privilege vulnerability exists in Microsoft Edge that could allow an attacker to esc
An elevation of privilege vulnerability exists in Microsoft Edge that could allow an attacker to escape from the AppContainer sandbox in the browser, aka "Microsoft Edge Elevation of Privilege Vulnerability." This CVE ID is unique from CVE-2017-0241.
nvd
CVE-2017-0221P3HIGHCVSS 7.5vWindows 10 for 32-bit Systems, Windows 10 for x64-based Systems, Windows 10 Version 1511 for 32-bit Systems, Windows 10 Version 1511 for x64-based Systems, Windows 10 Version 1607 for 32-bit Systems, Windows 10 Version 1607 for x64-based Systems, Windows 10 Version 1703 for 32-bit Systems, and Windows 10 Version 1703 for x64-based Systems.2017-05-12
CVE-2017-0221 [HIGH] CWE-119 CVE-2017-0221: A vulnerability exists when Microsoft Edge improperly accesses objects in memory, aka "Microsoft Edg
A vulnerability exists when Microsoft Edge improperly accesses objects in memory, aka "Microsoft Edge Memory Corruption Vulnerability." This CVE ID is unique from CVE-2017-0227 and CVE-2017-0240.
nvd
CVE-2017-11863P4MEDIUMCVSS 6.1vMicrosoft Windows 10 1703, 1709, Windows Server, version 1709, and ChakraCore.2017-11-15
CVE-2017-11863 [MEDIUM] CWE-20 CVE-2017-11863: Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows
Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to trick a user into loading a page containing malicious content, due to how the Edge Content Security Policy (CSP) validates documents, aka "Microsoft Edge Security Feature Bypass Vulnerability". This CVE ID is
nvd
CVE-2017-8650P4MEDIUMCVSS 5.4vMicrosoft Windows 10 1703.2017-08-08
CVE-2017-8650 [MEDIUM] CWE-346 CVE-2017-8650: Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to exploit a security feature bypass
Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to exploit a security feature bypass due to Microsoft Edge not properly enforcing same-origin policies, aka "Microsoft Edge Security Feature Bypass Vulnerability".
nvd
CVE-2018-0766P4MEDIUMCVSS 4.3vMicrosoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016.2018-01-04
CVE-2018-0766 [MEDIUM] CWE-200 CVE-2018-0766: Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows
Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to obtain information to further compromise the user's system, due to how the Microsoft Edge PDF Reader handles objects in memory, aka "Microsoft Edge Information Disclosure Vulnerability".
nvd
1 / 2Next →