Microsoft Edge Multiple Vulnerabilities
Release Date: 8 Dec 2023
RISK: Medium Risk
TYPE: Clients - Browsers
Multiple vulnerabilities were identified in Microsoft Edge. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, elevation of privilege, remote code execution and sensitive information disclosure on the targeted system.
Impact
- Denial of Service
- Elevation of Privilege
- Remote Code Execution
- Information Disclosure
System / Technologies affected
- Microsoft Edge (Stable) prior to 120.0.2210.61
Solutions
Before installation of the software, please visit the software vendor web-site for more details.
Apply fixes issued by the vendor:
- Update to Microsoft Edge (Stable) version 120.0.2210.61 or later
Vulnerability Identifier
- CVE-2023-6508
- CVE-2023-6509
- CVE-2023-6510
- CVE-2023-6511
- CVE-2023-6512
- CVE-2023-35618
- CVE-2023-36880
- CVE-2023-38174
Source
Related Link
- https://learn.microsoft.com/en-us/deployedge/microsoft-edge-relnotes-security#december-7-2023
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-6508
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-6509
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-6510
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-6511
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-6512
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35618
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36880
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-38174
沒有留言:
發佈留言