Msrc Microsoft Edge vulnerabilities

CVE-2023-1820 [HIGH] Chromium: CVE-2023-1820 Heap buffer overflow in Browser History Chromium: CVE-2023-1820 Heap buffer overflow in Browser History Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is cons

CVE-2023-2134 [HIGH] Chromium: CVE-2023-2134 Out of bounds memory access in Service Worker API Chromium: CVE-2023-2134 Out of bounds memory access in Service Worker API Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software

CVE-2023-2137 [HIGH] Chromium: CVE-2023-2137 Heap buffer overflow in sqlite Chromium: CVE-2023-2137 Heap buffer overflow in sqlite Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft

CVE-2023-2135 [HIGH] Chromium: CVE-2023-2135 Use after free in DevTools Chromium: CVE-2023-2135 Use after free in DevTools Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Ch

CVE-2023-1822 [MEDIUM] Chromium: CVE-2023-1822 Incorrect security UI in Navigation Chromium: CVE-2023-1822 Incorrect security UI in Navigation Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed b

CVE-2023-1823 [MEDIUM] Chromium: CVE-2023-1823 Inappropriate implementation in FedCM Chromium: CVE-2023-1823 Inappropriate implementation in FedCM Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consum

CVE-2023-1817 [MEDIUM] Chromium: CVE-2023-1817 Insufficient policy enforcement in Intents Chromium: CVE-2023-1817 Insufficient policy enforcement in Intents Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which

CVE-2023-1814 [MEDIUM] Chromium: CVE-2023-1814 Insufficient validation of untrusted input in Safe Browsing Chromium: CVE-2023-1814 Insufficient validation of untrusted input in Safe Browsing Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromiu

CVE-2023-29334 [MEDIUM] Microsoft Edge (Chromium-based) Spoofing Vulnerability Microsoft Edge (Chromium-based) Spoofing Vulnerability FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 112.0.1722.48 4/15/2023 112.0.5615.121 109.01518.100 4/24/2023 109.0.5414.141 FAQ: According to the CVSS metric, user interaction is required (UI:R). What interaction would the user have to do? The user would have to click on a specially c

CVE-2023-1813 [MEDIUM] Chromium: CVE-2023-1813 Inappropriate implementation in Extensions Chromium: CVE-2023-1813 Inappropriate implementation in Extensions Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which

CVE-2023-1816 [MEDIUM] Chromium: CVE-2023-1816 Incorrect security UI in Picture In Picture Chromium: CVE-2023-1816 Incorrect security UI in Picture In Picture Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) whi

CVE-2023-1821 [MEDIUM] Chromium: CVE-2023-1821 Inappropriate implementation in WebShare Chromium: CVE-2023-1821 Inappropriate implementation in WebShare Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is

CVE-2023-24935 [MEDIUM] Microsoft Edge (Chromium-based) Spoofing Vulnerability Microsoft Edge (Chromium-based) Spoofing Vulnerability FAQ: According to the CVSS metric, successful exploitation of this vulnerability could lead to some loss of confidentiality (C:L)? What does that mean for this vulnerability? Limited information from the victim's browser associated with the vulnerable URL can be sent to the attacker by the malicious code. FAQ: According to the CVSS metric, a successful exploitat

CVE-2023-1819 [MEDIUM] Chromium: CVE-2023-1819 Out of bounds read in Accessibility Chromium: CVE-2023-1819 Out of bounds read in Accessibility Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed b

CVE-2023-1529 [CRITICAL] Chromium: CVE-2023-1529 Out of bounds memory access in WebHID Chromium: CVE-2023-1529 Out of bounds memory access in WebHID Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is cons

CVE-2023-1533 [HIGH] Chromium: CVE-2023-1533 Use after free in WebProtect Chromium: CVE-2023-1533 Use after free in WebProtect Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge

CVE-2023-1214 [HIGH] Chromium: CVE-2023-1214 Type Confusion in V8 Chromium: CVE-2023-1214 Type Confusion in V8 Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based

CVE-2023-1218 [HIGH] Chromium: CVE-2023-1218 Use after free in WebRTC Chromium: CVE-2023-1218 Use after free in WebRTC Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromi

CVE-2023-1531 [HIGH] Chromium: CVE-2023-1531 Use after free in ANGLE Chromium: CVE-2023-1531 Use after free in ANGLE Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium

CVE-2023-1215 [HIGH] Chromium: CVE-2023-1215 Type Confusion in CSS Chromium: CVE-2023-1215 Type Confusion in CSS Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-bas