Msrc Microsoft Edge vulnerabilities

CVE-2021-37992 [HIGH] Chromium: CVE-2021-37992 Out of bounds read in WebAudio Chromium: CVE-2021-37992 Out of bounds read in WebAudio Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 95.0.1020.30 10/21/2021 95.0.4638.54 FAQ: Why is th

CVE-2021-37984 [HIGH] Chromium: CVE-2021-37984 Heap buffer overflow in PDFium Chromium: CVE-2021-37984 Heap buffer overflow in PDFium Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 95.0.1020.30 10/21/2021 95.0.4638.54 FAQ: Why is th

CVE-2021-37978 [HIGH] Chromium: CVE-2021-37978 Heap buffer overflow in Blink Chromium: CVE-2021-37978 Heap buffer overflow in Blink Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 94.0.992.47 10/11/2021 94.0.4606.71 FAQ: Why is this C

CVE-2021-37975 [HIGH] Chromium: CVE-2021-37975 Use after free in V8 Chromium: CVE-2021-37975 Use after free in V8 Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. This vulnerability is known to be exploited in the wild. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 94.0.992.38 10/01

CVE-2021-37983 [HIGH] Chromium: CVE-2021-37983 Use after free in Dev Tools Chromium: CVE-2021-37983 Use after free in Dev Tools Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 95.0.1020.30 10/21/2021 95.0.4638.54 FAQ: Why is this Chr

CVE-2021-38001 [HIGH] Chromium: CVE-2021-38001 Type Confusion in V8 Chromium: CVE-2021-38001 Type Confusion in V8 Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 95.0.1020.40 10/29/2021 95.0.4638.69 FAQ: Why is this Chrome CVE include

CVE-2021-37997 [HIGH] Chromium: CVE-2021-37997 Use after free in Sign-In Chromium: CVE-2021-37997 Use after free in Sign-In Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 95.0.1020.40 10/29/2021 95.0.4638.69 FAQ: Why is this Chrome

CVE-2021-38003 [HIGH] Chromium: CVE-2021-38003 Inappropriate implementation in V8 Chromium: CVE-2021-38003 Inappropriate implementation in V8 Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. Google is aware that exploits for this vulnerability exist in the wild. FAQ: What is the version information for this release? Microsoft Edge Version Date Released B

CVE-2021-37987 [HIGH] Chromium: CVE-2021-37987 Use after free in Network APIs Chromium: CVE-2021-37987 Use after free in Network APIs Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 95.0.1020.30 10/21/2021 95.0.4638.54 FAQ: Why is th

CVE-2021-37986 [HIGH] Chromium: CVE-2021-37986 Heap buffer overflow in Settings Chromium: CVE-2021-37986 Heap buffer overflow in Settings Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 95.0.1020.30 10/21/2021 95.0.4638.54 FAQ: Why i

CVE-2021-37977 [HIGH] Chromium: CVE-2021-37977 Use after free in Garbage Collection Chromium: CVE-2021-37977 Use after free in Garbage Collection Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 94.0.992.47 10/11/2021 94.0.4606.71 FAQ:

CVE-2021-37980 [HIGH] Chromium: CVE-2021-37980 Inappropriate implementation in Sandbox Chromium: CVE-2021-37980 Inappropriate implementation in Sandbox Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 94.0.992.47 10/11/2021 94.0.4606.71

CVE-2021-37982 [HIGH] Chromium: CVE-2021-37982 Use after free in Incognito Chromium: CVE-2021-37982 Use after free in Incognito Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 95.0.1020.30 10/21/2021 95.0.4638.54 FAQ: Why is this Chr

CVE-2021-37974 [HIGH] Chromium: CVE-2021-37974 Use after free in Safe Browsing Chromium: CVE-2021-37974 Use after free in Safe Browsing Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 94.0.992.38 10/01/2021 94.0.4606.71 FAQ: Why is th

CVE-2021-37999 [MEDIUM] Chromium: CVE-2021-37999 Insufficient data validation in New Tab Page Chromium: CVE-2021-37999 Insufficient data validation in New Tab Page Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 95.0.1020.40 10/29/2021

CVE-2021-37994 [MEDIUM] Chromium: CVE-2021-37994 Inappropriate implementation in iFrame Sandbox Chromium: CVE-2021-37994 Inappropriate implementation in iFrame Sandbox Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 95.0.1020.30 10/21/

CVE-2021-42307 [MEDIUM] Microsoft Edge (Chromium-based) Information Disclosure Vulnerability Microsoft Edge (Chromium-based) Information Disclosure Vulnerability FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 95.0.1020.30 10/21/2021 95.0.4638.54 Microsoft Edge (Chromium-based): Microsoft Edge (Chromium-based) Microsoft: Microsoft Impact: Information Disclosure Exploit Status: Publicly Disclosed:No;Exploited:No;Lates

CVE-2021-37996 [MEDIUM] Chromium: CVE-2021-37996 Insufficient validation of untrusted input in Downloads Chromium: CVE-2021-37996 Insufficient validation of untrusted input in Downloads Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 9

CVE-2021-37995 [MEDIUM] Chromium: CVE-2021-37995 Inappropriate implementation in WebApp Installer Chromium: CVE-2021-37995 Inappropriate implementation in WebApp Installer Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 95.0.1020.30 10

CVE-2021-38000 [MEDIUM] Chromium: CVE-2021-38000 Insufficient validation of untrusted input in Intents Chromium: CVE-2021-38000 Insufficient validation of untrusted input in Intents Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. Google is aware that exploits for this vulnerability exist in the wild. FAQ: What is the version information for this release?