Msrc Microsoft Edge vulnerabilities

CVE-2022-2857 [HIGH] Chromium: CVE-2022-2857 Use after free in Blink Chromium: CVE-2022-2857 Use after free in Blink Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 104.0.1293.63 8/19/2022 104.0.5112.102 FAQ: Why is this Chrome CVE in

CVE-2022-2621 [HIGH] Chromium: CVE-2022-2621 Use after free in Extensions Chromium: CVE-2022-2621 Use after free in Extensions Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 104.0.1293.47 8/5/2022 104.0.5112.79/80/81 FAQ: Why is this

CVE-2022-2604 [HIGH] Chromium: CVE-2022-2604 Use after free in Safe Browsing Chromium: CVE-2022-2604 Use after free in Safe Browsing Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 104.0.1293.47 8/5/2022 104.0.5112.79/80/81 FAQ: Why i

CVE-2022-2624 [HIGH] Chromium: CVE-2022-2624 Heap buffer overflow in PDF Chromium: CVE-2022-2624 Heap buffer overflow in PDF Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 104.0.1293.47 8/5/2022 104.0.5112.79/80/81 FAQ: Why is this C

CVE-2022-2852 [HIGH] Chromium: CVE-2022-2852 Use after free in FedCM Chromium: CVE-2022-2852 Use after free in FedCM Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 104.0.1293.63 8/19/2022 104.0.5112.102 FAQ: Why is this Chrome CVE in

CVE-2022-2854 [HIGH] Chromium: CVE-2022-2854 Use after free in SwiftShader Chromium: CVE-2022-2854 Use after free in SwiftShader Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 104.0.1293.63 8/19/2022 104.0.5112.102 FAQ: Why is this C

CVE-2022-2619 [MEDIUM] Chromium: CVE-2022-2619 Insufficient validation of untrusted input in Settings Chromium: CVE-2022-2619 Insufficient validation of untrusted input in Settings Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 104.0.1

CVE-2022-2860 [MEDIUM] Chromium: CVE-2022-2860 Insufficient policy enforcement in Cookies Chromium: CVE-2022-2860 Insufficient policy enforcement in Cookies Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 104.0.1293.63 8/19/2022 104.0.5

CVE-2022-2611 [MEDIUM] Chromium: CVE-2022-2611 Inappropriate implementation in Fullscreen API Chromium: CVE-2022-2611 Inappropriate implementation in Fullscreen API Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 104.0.1293.47 8/5/2022

CVE-2022-2861 [MEDIUM] Chromium: CVE-2022-2861 Inappropriate implementation in Extensions API Chromium: CVE-2022-2861 Inappropriate implementation in Extensions API Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 104.0.1293.63 8/19/2022

CVE-2022-2618 [MEDIUM] Chromium: CVE-2022-2618 Insufficient validation of untrusted input in Internals Chromium: CVE-2022-2618 Insufficient validation of untrusted input in Internals Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 104.0

CVE-2022-2605 [MEDIUM] Chromium: CVE-2022-2605 Out of bounds read in Dawn Chromium: CVE-2022-2605 Out of bounds read in Dawn Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 104.0.1293.47 8/5/2022 104.0.5112.79/80/81 FAQ: Why is this C

CVE-2022-2612 [MEDIUM] Chromium: CVE-2022-2612 Side-channel information leakage in Keyboard input Chromium: CVE-2022-2612 Side-channel information leakage in Keyboard input Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 104.0.1293.47 8

CVE-2022-2616 [MEDIUM] Chromium: CVE-2022-2616 Inappropriate implementation in Extensions API Chromium: CVE-2022-2616 Inappropriate implementation in Extensions API Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 104.0.1293.47 8/5/2022

CVE-2022-2615 [MEDIUM] Chromium: CVE-2022-2615 Insufficient policy enforcement in Cookies Chromium: CVE-2022-2615 Insufficient policy enforcement in Cookies Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 104.0.1293.47 8/5/2022 104.0.51

CVE-2022-2622 [MEDIUM] Chromium: CVE-2022-2622 Insufficient validation of untrusted input in Safe Browsing Chromium: CVE-2022-2622 Insufficient validation of untrusted input in Safe Browsing Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version

CVE-2022-2610 [MEDIUM] Chromium: CVE-2022-2610 Insufficient policy enforcement in Background Fetch Chromium: CVE-2022-2610 Insufficient policy enforcement in Background Fetch Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 104.0.1293.47

CVE-2022-2856 [MEDIUM] Chromium: CVE-2022-2856 Insufficient validation of untrusted input in Intents Chromium: CVE-2022-2856 Insufficient validation of untrusted input in Intents Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. Google is aware that an exploit for CVE-2022-2856 exists in the wild. FAQ: What is the version information for this release? Micr

CVE-2022-2480 [HIGH] Chromium: CVE-2022-2480 Use after free in Service Worker API Chromium: CVE-2022-2480 Use after free in Service Worker API Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 103.0.1264.71 7/22/2022 103.0.5060.134 FAQ

CVE-2022-2477 [HIGH] Chromium: CVE-2022-2477 Use after free in Guest View Chromium: CVE-2022-2477 Use after free in Guest View Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 103.0.1264.71 7/22/2022 103.0.5060.134 FAQ: Why is this Ch