CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Citrix•added 2024/05/07 12:0 a.m.•9 views

PVS 2402 | Console Setup: EdgeWebView2 not installing correctly

When launching the "Console Installer" it tries to install the prerequired software which includes Edge WebView2. In some cases when installing it from the iso, Edge WebView2 might not show up in "appwiz.cpl" or "Apps and Features". If you start the "Console Installer" again it is shown as "not...

7.1AI score

BDU FSTEC•added 2024/04/19 12:0 a.m.•4 views

The vulnerability of the Webview2 control in the Microsoft Edge browser allows attackers to perform spoofing attacks.

The vulnerability of the Webview2 control in Microsoft Edge exists due to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability can allow attackers to perform spear-phishing attacks...

4.1CVSS7.7AI score0.00664EPSS

Exploits0References2Affected Software1

CNVD•added 2024/04/10 12:0 a.m.•7 views

Microsoft Edge (Chromium-based) Webview2 Spoofing Vulnerability

Microsoft Edge is a web browser from the American company Microsoft that comes with systems after Windows 10. A spoofing vulnerability exists in Microsoft Edge Chromium-based Webview2, which can be exploited by attackers to conduct spoofing attacks...

4.7CVSS6.3AI score0.00664EPSS

OpenVAS•added 2024/04/10 12:0 a.m.•17 views

Microsoft Edge (Chromium-Based) Multiple Vulnerabilities - Apr24

Microsoft Edge Chromium-Based is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

4.7CVSS5AI score0.00697EPSS

NVD•added 2024/04/04 10:15 p.m.•21 views

CVE-2024-29049

Microsoft Edge Chromium-based Webview2 Spoofing Vulnerability...

4.7CVSS4.6AI score0.00664EPSS

OSV•added 2024/04/04 10:15 p.m.•5 views

CVE-2024-29049

Microsoft Edge Chromium-based Webview2 Spoofing Vulnerability...

4.7CVSS5.8AI score0.00664EPSS

Vulnrichment•added 2024/04/04 9:47 p.m.•36 views

CVE-2024-29049 Microsoft Edge (Chromium-based) Webview2 Spoofing Vulnerability

...

4.1CVSS6.8AI score0.00664EPSS

CVE•added 2024/04/04 9:47 p.m.•193 views

CVE-2024-29049

CVE-2024-29049 describes a spoofing vulnerability in Microsoft Edge (Chromium-based) that involves the Edge WebView2 component. Connected sources consistently identify the affected element as the WebView2 surface used by Edge’s Chromium-based browser, resulting in spoofing of the user interface. ...

4.7CVSS4.5AI score0.00664EPSS

Exploits0References1Affected Software1

Microsoft CVE•added 2024/04/04 7:0 a.m.•43 views

Microsoft Edge (Chromium-based) Webview2 Spoofing Vulnerability

...

4.7CVSS7AI score0.00664EPSS

CNNVD•added 2024/04/04 12:0 a.m.•5 views

Microsoft Edge 安全漏洞

4.7CVSS6.4AI score0.00664EPSS

Tenable Nessus•added 2024/04/04 12:0 a.m.•72 views

Microsoft Edge (Chromium) < 122.0.2365.120 / 123.0.2420.81 Multiple Vulnerabilities

The version of Microsoft Edge installed on the remote Windows host is prior to 122.0.2365.120 / 123.0.2420.81. It is, therefore, affected by multiple vulnerabilities as referenced in the April 4, 2024 advisory. - Microsoft Edge Chromium-based Webview2 Spoofing Vulnerability CVE-2024-29049 -...

8.8CVSS7.5AI score0.01599EPSS

Exploits0References11

Tenable Nessus•added 2023/11/03 12:0 a.m.•22 views

Zoom Client for Meetings < 5.13.3 Vulnerability (ZSB-23001)

The version of Zoom Client for Meetings installed on the remote host is prior to 5.13.3. It is, therefore, affected by a vulnerability as referenced in the ZSB-23001 advisory. - Zoom for Windows clients before version 5.13.3, Zoom Rooms for Windows clients before version 5.13.5 and Zoom VDI for...

7.5CVSS7.4AI score0.00983EPSS

The Hacker News•added 2023/06/13 3:31 p.m.•24 views

Beware: New DoubleFinger Loader Targets Cryptocurrency Wallets with Stealer

A novel multi-stage loader called DoubleFinger has been observed delivering a cryptocurrency stealer dubbed GreetingGhoul in what's an advanced attack targeting users in Europe, the U.S., and Latin America. "DoubleFinger is deployed on the target machine, when the victim opens a malicious PIF...

7.4AI score

Tenable Nessus•added 2023/04/19 12:0 a.m.•42 views

Zoom VDI Meeting Client < 5.13.1 Vulnerability (ZSB-23001)

The version of Zoom Client for Meetings installed on the remote host is prior to 5.13.3., or the version of Zoom VDI isntalled on the remote host is prior to 5.13.1. It is, therefore, affected by a the Information Disclosure vulnerability as referenced in the ZSB-23001 advisory. - Zoom for Window...

7.5CVSS5.9AI score0.00983EPSS