Lucene search

K
cvelistMicrosoftCVELIST:CVE-2023-24935
HistoryApr 11, 2023 - 7:12 p.m.

CVE-2023-24935 Microsoft Edge (Chromium-based) Spoofing Vulnerability

2023-04-1119:12:59
microsoft
www.cve.org
microsoft edge
spoofing vulnerability
chromium-based

6.1 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N/E:U/RL:O/RC:C

7.1 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

29.4%

CNA Affected

[
  {
    "vendor": "Microsoft",
    "product": "Microsoft Edge (Chromium-based)",
    "cpes": [
      "cpe:2.3:a:microsoft:edge_chromium:*:*:*:*:*:*:*:*"
    ],
    "platforms": [
      "Unknown"
    ],
    "versions": [
      {
        "version": "1.0.0",
        "lessThan": "112.0.5615.49/50",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  }
]

6.1 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N/E:U/RL:O/RC:C

7.1 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

29.4%