Lucene search

[email protected]CVE-2019-0926

HistoryMay 16, 2019 - 7:29 p.m.

CVE-2019-0926

2019-05-1619:29:03

CWE-787

[email protected]

web.nvd.nist.gov

cve-2019-0926

microsoft edge

remote code execution

memory corruption

nvd

7.6 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

0.021 Low

EPSS

Percentile

89.3%

JSON

A remote code execution vulnerability exists when Microsoft Edge improperly accesses objects in memory, aka ‘Microsoft Edge Memory Corruption Vulnerability’.

Affected configurations

Vulners

NVD

Node

microsoftedgeMatchWindows 10 Version 1809 for 32-bit Systems

microsoftedgeMatchWindows 10 Version 1809 for x64-based Systems

microsoftedgeMatchWindows 10 Version 1809 for ARM64-based Systems

microsoftedgeMatchWindows Server 2019

microsoftedgeMatchunspecified

VendorProductVersionCPE
microsoftedgeWindows 10 Version 1809 for 32-bit Systemscpe:2.3:a:microsoft:edge:Windows 10 Version 1809 for 32-bit Systems:*:*:*:*:*:*:*
microsoftedgeWindows 10 Version 1809 for x64-based Systemscpe:2.3:a:microsoft:edge:Windows 10 Version 1809 for x64-based Systems:*:*:*:*:*:*:*
microsoftedgeWindows 10 Version 1809 for ARM64-based Systemscpe:2.3:a:microsoft:edge:Windows 10 Version 1809 for ARM64-based Systems:*:*:*:*:*:*:*
microsoftedgeWindows Server 2019cpe:2.3:a:microsoft:edge:Windows Server 2019:*:*:*:*:*:*:*
microsoftedgeunspecifiedcpe:2.3:a:microsoft:edge:unspecified:*:*:*:*:*:*:*
microsoftedgeunspecifiedcpe:2.3:a:microsoft:edge:unspecified:*:*:*:*:*:*:*
microsoftedgeunspecifiedcpe:2.3:a:microsoft:edge:unspecified:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
microsoft	edge	Windows 10 Version 1809 for 32-bit Systems	cpe:2.3:a:microsoft:edge:Windows 10 Version 1809 for 32-bit Systems:::::::*
microsoft	edge	Windows 10 Version 1809 for x64-based Systems	cpe:2.3:a:microsoft:edge:Windows 10 Version 1809 for x64-based Systems:::::::*
microsoft	edge	Windows 10 Version 1809 for ARM64-based Systems	cpe:2.3:a:microsoft:edge:Windows 10 Version 1809 for ARM64-based Systems:::::::*
microsoft	edge	Windows Server 2019	cpe:2.3:a:microsoft:edge:Windows Server 2019:::::::*
microsoft	edge	unspecified	cpe:2.3:a:microsoft:edge:unspecified:::::::*
microsoft	edge	unspecified	cpe:2.3:a:microsoft:edge:unspecified:::::::*
microsoft	edge	unspecified	cpe:2.3:a:microsoft:edge:unspecified:::::::*

CNA Affected

[
  {
    "product": "Microsoft Edge",
    "vendor": "Microsoft",
    "versions": [
      {
        "status": "affected",
        "version": "Windows 10 Version 1809 for 32-bit Systems"
      },
      {
        "status": "affected",
        "version": "Windows 10 Version 1809 for x64-based Systems"
      },
      {
        "status": "affected",
        "version": "Windows 10 Version 1809 for ARM64-based Systems"
      },
      {
        "status": "affected",
        "version": "Windows Server 2019"
      }
    ]
  },
  {
    "product": "Microsoft Edge on Windows 10 Version 1903 for 32-bit Systems",
    "vendor": "Microsoft",
    "versions": [
      {
        "status": "affected",
        "version": "unspecified"
      }
    ]
  },
  {
    "product": "Microsoft Edge on Windows 10 Version 1903 for x64-based Systems",
    "vendor": "Microsoft",
    "versions": [
      {
        "status": "affected",
        "version": "unspecified"
      }
    ]
  },
  {
    "product": "Microsoft Edge on Windows 10 Version 1903 for ARM64-based Systems",
    "vendor": "Microsoft",
    "versions": [
      {
        "status": "affected",
        "version": "unspecified"
      }
    ]
  }
]