Msrc Microsoft Edge vulnerabilities

CVE-2022-1865 [HIGH] Chromium: CVE-2022-1865 Use after free in Bookmarks Chromium: CVE-2022-1865 Use after free in Bookmarks Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 102.0.1245.30 5/31/2022 102.0.5005.61 FAQ: Why is this Chrome

CVE-2022-1639 [HIGH] Chromium: CVE-2022-1639 Use after free in ANGLE Chromium: CVE-2022-1639 Use after free in ANGLE Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 101.0.1210.47 5/13/2022 101.0.4951.64 FAQ: Why is this Chrome CVE inc

CVE-2022-1640 [HIGH] Chromium: CVE-2022-1640 Use after free in Sharing Chromium: CVE-2022-1640 Use after free in Sharing Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 101.0.1210.47 5/13/2022 101.0.4951.64 FAQ: Why is this Chrome CVE

CVE-2022-1873 [MEDIUM] Chromium: CVE-2022-1873 Insufficient policy enforcement in COOP Chromium: CVE-2022-1873 Insufficient policy enforcement in COOP Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 102.0.1245.30 5/31/2022 102.0.5005.61

CVE-2022-1858 [MEDIUM] Chromium: CVE-2022-1858 Out of bounds read in DevTools Chromium: CVE-2022-1858 Out of bounds read in DevTools Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 102.0.1245.30 5/31/2022 102.0.5005.61 FAQ: Why is thi

CVE-2022-1868 [MEDIUM] Chromium: CVE-2022-1868 Inappropriate implementation in Extensions API Chromium: CVE-2022-1868 Inappropriate implementation in Extensions API Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 102.0.1245.30 5/31/2022

CVE-2022-1872 [MEDIUM] Chromium: CVE-2022-1872 Insufficient policy enforcement in Extensions API Chromium: CVE-2022-1872 Insufficient policy enforcement in Extensions API Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 102.0.1245.30 5/3

CVE-2022-1862 [MEDIUM] Chromium: CVE-2022-1862 Inappropriate implementation in Extensions Chromium: CVE-2022-1862 Inappropriate implementation in Extensions Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 102.0.1245.30 5/31/2022 102.0.5

CVE-2022-1867 [MEDIUM] Chromium: CVE-2022-1867 Insufficient validation of untrusted input in Data Transfer Chromium: CVE-2022-1867 Insufficient validation of untrusted input in Data Transfer Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version

CVE-2022-26905 [MEDIUM] Microsoft Edge (Chromium-based) Spoofing Vulnerability Microsoft Edge (Chromium-based) Spoofing Vulnerability FAQ: According to the CVSS metric, user interaction is required (UI:R). What interaction would the user have to do? This vulnerability requires that a user have multiple browser instances open of the affected version of Microsoft Edge (Chromium-based), one of which is a specially crafted website hosted by the attacker. The user would need to access the URL of the

CVE-2022-1875 [MEDIUM] Chromium: CVE-2022-1875 Inappropriate implementation in PDF Chromium: CVE-2022-1875 Inappropriate implementation in PDF Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 102.0.1245.30 5/31/2022 102.0.5005.61 FAQ:

CVE-2022-1871 [MEDIUM] Chromium: CVE-2022-1871 Insufficient policy enforcement in File System API Chromium: CVE-2022-1871 Insufficient policy enforcement in File System API Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 102.0.1245.30 5

CVE-2022-1637 [MEDIUM] Chromium: CVE-2022-1637 Inappropriate implementation in Web Contents Chromium: CVE-2022-1637 Inappropriate implementation in Web Contents Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 101.0.1210.47 5/13/2022 101

CVE-2022-1869 [MEDIUM] Chromium: CVE-2022-1869 Type Confusion in V8 Chromium: CVE-2022-1869 Type Confusion in V8 Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 102.0.1245.30 5/31/2022 102.0.5005.61 FAQ: Why is this Chrome CVE include

CVE-2022-1309 [CRITICAL] Chromium: CVE-2022-1309 Insufficient policy enforcement in developer tools Chromium: CVE-2022-1309 Insufficient policy enforcement in developer tools Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 100.0.1185.44

CVE-2022-1312 [CRITICAL] Chromium: CVE-2022-1312 Use after free in storage Chromium: CVE-2022-1312 Use after free in storage Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 100.0.1185.44 4/15/2022 100.0.4896.127 100.0.1185.44 4/15/202

CVE-2022-26912 [HIGH] Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability FAQ: According to the CVSS metric, the attack complexity is high (AC:H). What does that mean for this vulnerability? Successful exploitation of this vulnerability requires an attacker to take additional actions prior to exploitation to prepare the target environment. FAQ: Why is the severity for this CVE rated as Moderate, but the CVSS

CVE-2022-1145 [HIGH] Chromium: CVE-2022-1145 Use after free in Extensions Chromium: CVE-2022-1145 Use after free in Extensions Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 100.0.1185.29 4/1/2022 100.0.4896.60 FAQ: Why is this Chrom

CVE-2022-1483 [HIGH] Chromium: CVE-2022-1483 Heap buffer overflow in WebGPU Chromium: CVE-2022-1483 Heap buffer overflow in WebGPU Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 101.0.1210.32 4/28/2022 101.0.4951.41 FAQ: Why is this

CVE-2022-1125 [HIGH] Chromium: CVE-2022-1125 Use after free in Portals Chromium: CVE-2022-1125 Use after free in Portals Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 100.0.1185.29 4/1/2022 100.0.4896.60 FAQ: Why is this Chrome CVE