Microsoft Edge Multiple Vulnerabilities
Release Date: 5 Apr 2024
RISK: Medium Risk
TYPE: Clients - Browsers
Multiple vulnerabilities were identified in Microsoft Edge. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, remote code execution, sensitive information disclosure and spoofing on the targeted system.
Impact
- Remote Code Execution
- Denial of Service
- Information Disclosure
- Spoofing
System / Technologies affected
- Microsoft Edge (Stable) prior to 123.0.2420.81
- Microsoft Edge (Extended Stable) prior to 122.0.2365.120
Solutions
Before installation of the software, please visit the software vendor web-site for more details.
Apply fixes issued by the vendor:
- Update to Microsoft Edge (Stable) version 123.0.2420.81 or later
- Update to Microsoft Edge (Extended Stable) version 122.0.2365.120 or later
Vulnerability Identifier
Source
Related Link
- https://learn.microsoft.com/en-us/DeployEdge/microsoft-edge-relnotes-security#april-4-2024
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-3156
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-3158
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-3159
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29049
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29981
沒有留言:
發佈留言