mickmick.net

Microsoft Edge Multiple Vulnerabilities

Release Date: 6 Dec 2022

RISK: Extremely High Risk

TYPE: Clients - Browsers

Multiple vulnerabilities were identified in Microsoft Edge. A remote attacker could exploit these vulnerabilities to trigger remote code execution, denial of service, security restriction bypass, elevation of privilege and spoofing on the targeted system.

 

Note:

CVE-2022-4262 is being exploited in the wild.

---

Impact

• Remote Code Execution
• Denial of Service
• Security Restriction Bypass
• Elevation of Privilege
• Spoofing

---

System / Technologies affected

• Microsoft Edge prior to 108.0.1462.41

---

Solutions

Before installation of the software, please visit the software vendor web-site for more details.

Apply fixes issued by the vendor:

• Update to version 108.0.1462.41 or later

---

Vulnerability Identifier

• CVE-2022-4174
• CVE-2022-4175
• CVE-2022-4177
• CVE-2022-4178
• CVE-2022-4179
• CVE-2022-4180
• CVE-2022-4181
• CVE-2022-4182
• CVE-2022-4183
• CVE-2022-4184
• CVE-2022-4185
• CVE-2022-4186
• CVE-2022-4187
• CVE-2022-4188
• CVE-2022-4189
• CVE-2022-4190
• CVE-2022-4191
• CVE-2022-4192
• CVE-2022-4193
• CVE-2022-4194
• CVE-2022-4195
• CVE-2022-4262
• CVE-2022-44688
• CVE-2022-44708

---

Source

• Microsoft Edge

---

Related Link

• https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-4174
• https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-4175
• https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-4177
• https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-4178
• https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-4179
• https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-4180
• https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-4181
• https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-4182
• https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-4183
• https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-4184
• https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-4185
• https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-4186
• https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-4187
• https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-4188
• https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-4189
• https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-4190
• https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-4191
• https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-4192
• https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-4193
• https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-4194
• https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-4195
• https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-4262
• https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44688
• https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44708