Microsoft Edge Multiple Vulnerabilities
Release Date: 25 Mar 2024
RISK: Medium Risk
TYPE: Clients - Browsers
Multiple vulnerabilities were identified in Microsoft Edge. A remote attacker could exploit some of these vulnerabilities to trigger remote code execution, information disclosure, spoofing, denial of service and security restriction bypass on the targeted system.
Impact
- Remote Code Execution
- Security Restriction Bypass
- Information Disclosure
- Spoofing
- Denial of Service
System / Technologies affected
- Microsoft Edge (Stable) prior to 123.0.2420.53
Solutions
Before installation of the software, please visit the software vendor web-site for more details.
Apply fixes issued by the vendor:
- Update to Microsoft Edge (Stable) version 123.0.2420.53 or later
Vulnerability Identifier
- CVE-2024-2625
- CVE-2024-2626
- CVE-2024-2627
- CVE-2024-2628
- CVE-2024-2629
- CVE-2024-2630
- CVE-2024-2631
- CVE-2024-26247
- CVE-2024-29057
Source
Related Link
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-2626
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-2628
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-2625
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29057
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-2627
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26247
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-2629
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-2630
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-2631
沒有留言:
發佈留言