Lucene search

K
MicrosoftEdge

903 matches found

CVE
CVE
added 2015/08/14 10:59 a.m.68 views

CVE-2015-2442

Microsoft Internet Explorer 8 through 11 and Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Memory Corruption Vulnerability," a different vulnerability than CVE-2015-2444.

9.3CVSS7.6AI score0.25579EPSS
CVE
CVE
added 2015/09/09 12:59 a.m.68 views

CVE-2015-2542

Microsoft Internet Explorer 10 and 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Memory Corruption Vulnerability."

9.3CVSS7.5AI score0.14833EPSS
CVE
CVE
added 2016/05/11 11:1 a.m.68 views

CVE-2016-4109

Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064.

7.6CVSS8.2AI score0.06491EPSS
CVE
CVE
added 2016/12/20 6:59 a.m.68 views

CVE-2016-7279

Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Browser Memory Corruption Vulnerability."

7.6CVSS8.1AI score0.61474EPSS
CVE
CVE
added 2017/03/17 12:59 a.m.68 views

CVE-2017-0034

A remote code execution vulnerability exists when Microsoft Edge improperly accesses objects in memory. The vulnerability could corrupt memory in a way that enables an attacker to execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerability cou...

7.6CVSS7.8AI score0.23582EPSS
CVE
CVE
added 2017/10/13 1:29 p.m.68 views

CVE-2017-11805

ChakraCore and Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-11792, C...

7.6CVSS7.8AI score0.78672EPSS
CVE
CVE
added 2017/06/15 1:29 a.m.68 views

CVE-2017-8499

Microsoft Edge in Windows 10 1703 allows an attacker to execute arbitrary code in the context of the current user when the Edge JavaScript scripting engine fails to handle objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-8520, CVE-2017-8...

7.6CVSS6.8AI score0.74995EPSS
CVE
CVE
added 2017/08/08 9:29 p.m.68 views

CVE-2017-8672

Microsoft Edge in Microsoft Windows 10 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user due to the way that Microsoft browser JavaScript engines render content when handling objects in memory, aka "Scripting Engine Memory Corr...

7.6CVSS7.8AI score0.82712EPSS
CVE
CVE
added 2018/03/14 5:29 p.m.68 views

CVE-2018-0893

Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0876, CVE-2018-0889, CVE-2018-0925,...

7.6CVSS6.2AI score0.68046EPSS
CVE
CVE
added 2018/03/14 5:29 p.m.68 views

CVE-2018-0933

ChakraCore and Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the Chakra scripting engine handles objects in memory, aka "Chakra Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0872, CVE-2018...

7.6CVSS7.3AI score0.85621EPSS
CVE
CVE
added 2018/03/14 5:29 p.m.68 views

CVE-2018-0937

ChakraCore and Microsoft Windows 10 1703 and 1709 allow remote code execution, due to how the Chakra scripting engine handles objects in memory, aka "Chakra Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0872, CVE-2018-0873, CVE-2018-0874, CVE-2018-0930, CVE-...

7.6CVSS7.2AI score0.85621EPSS
CVE
CVE
added 2018/03/14 5:29 p.m.68 views

CVE-2018-0939

ChakraCore and Microsoft Edge in Windows 10 1703 and 1709 allow information disclosure, due to how the scripting engine handles objects in memory, aka "Scripting Engine Information Disclosure Vulnerability". This CVE ID is unique from CVE-2018-0891.

4.3CVSS5.1AI score0.53483EPSS
CVE
CVE
added 2018/04/12 1:29 a.m.68 views

CVE-2018-0993

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-0979, CVE-2018-0980, CVE-...

7.6CVSS6.4AI score0.77559EPSS
CVE
CVE
added 2018/05/09 7:29 p.m.68 views

CVE-2018-8137

A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge, aka "Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-0945, CVE-2018-0946, CVE-2018-0951, CVE...

7.6CVSS7.7AI score0.77559EPSS
CVE
CVE
added 2018/07/11 12:29 a.m.68 views

CVE-2018-8301

A remote code execution vulnerability exists when Microsoft Edge improperly accesses objects in memory, aka "Microsoft Edge Memory Corruption Vulnerability." This affects Microsoft Edge. This CVE ID is unique from CVE-2018-8125, CVE-2018-8262, CVE-2018-8274, CVE-2018-8275, CVE-2018-8279.

7.6CVSS6.6AI score0.85081EPSS
CVE
CVE
added 2018/10/10 1:29 p.m.68 views

CVE-2018-8512

A security feature bypass vulnerability exists in Microsoft Edge when the Edge Content Security Policy (CSP) fails to properly validate certain specially crafted documents, aka "Microsoft Edge Security Feature Bypass Vulnerability." This affects Microsoft Edge. This CVE ID is unique from CVE-2018-8...

5.8CVSS5.4AI score0.03377EPSS
CVE
CVE
added 2018/11/14 1:29 a.m.68 views

CVE-2018-8545

An information disclosure vulnerability exists in the way that Microsoft Edge handles cross-origin requests, aka "Microsoft Edge Information Disclosure Vulnerability." This affects Microsoft Edge.

4.3CVSS4.9AI score0.03927EPSS
CVE
CVE
added 2018/12/12 12:29 a.m.68 views

CVE-2018-8618

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8583, CVE-2018-8617, CVE-...

7.6CVSS6.8AI score0.89893EPSS
CVE
CVE
added 2019/03/06 12:0 a.m.68 views

CVE-2019-0605

A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0590, CVE-2019-0591, CVE-2019-0593, CVE-2019-0607, CVE-2019-0610, CVE-2019-0640,...

7.6CVSS7.7AI score0.34646EPSS
CVE
CVE
added 2019/03/06 12:0 a.m.68 views

CVE-2019-0654

A spoofing vulnerability exists when Microsoft browsers improperly handles specific redirects, aka 'Microsoft Browser Spoofing Vulnerability'.

4.3CVSS6.3AI score0.03544EPSS
CVE
CVE
added 2015/09/09 12:59 a.m.67 views

CVE-2015-2485

Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Memory Corruption Vulnerability," a different vulnerability than CVE-2015-2491 and CVE-2015-2541.

9.3CVSS7.5AI score0.20844EPSS
CVE
CVE
added 2016/04/12 11:59 p.m.67 views

CVE-2016-0155

Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Edge Memory Corruption Vulnerability," a different vulnerability than CVE-2016-0156 and CVE-2016-0157.

7.6CVSS7.6AI score0.20272EPSS
CVE
CVE
added 2016/05/11 11:0 a.m.67 views

CVE-2016-1101

Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064.

7.6CVSS8.2AI score0.53066EPSS
CVE
CVE
added 2016/05/11 11:0 a.m.67 views

CVE-2016-1106

Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064.

7.6CVSS8.2AI score0.60045EPSS
CVE
CVE
added 2016/06/16 1:59 a.m.67 views

CVE-2016-3222

Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Edge Memory Corruption Vulnerability."

9.3CVSS8.6AI score0.69898EPSS
Web
CVE
CVE
added 2016/08/09 9:59 p.m.67 views

CVE-2016-3327

Microsoft Internet Explorer 9 through 11 and Edge allow remote attackers to obtain sensitive information via a crafted web page, aka "Microsoft Browser Information Disclosure Vulnerability," a different vulnerability than CVE-2016-3326.

5.3CVSS5.1AI score0.32707EPSS
CVE
CVE
added 2017/04/12 2:59 p.m.67 views

CVE-2017-0205

A remote code execution vulnerability exists when Microsoft Edge improperly accesses objects in memory. The vulnerability could corrupt memory in such a way that enables an attacker to execute arbitrary code in the context of the current user, aka "Microsoft Edge Memory Corruption Vulnerability."

7.6CVSS7.8AI score0.2391EPSS
CVE
CVE
added 2017/07/11 9:29 p.m.67 views

CVE-2017-8608

Microsoft browsers in Microsoft Windows Server 2008 and R2, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allow an attacker to execute arbitrary code in the context of the current user when the JavaScript engines fail to r...

7.6CVSS7.5AI score0.78054EPSS
CVE
CVE
added 2017/08/08 9:29 p.m.67 views

CVE-2017-8639

Microsoft Edge in Windows 10 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user due to the way that Microsoft browser JavaScript engines render content when handling objects in memory, aka "Scripting Engine Memory Corruption Vulnerabi...

7.6CVSS7.8AI score0.82712EPSS
CVE
CVE
added 2017/09/13 1:29 a.m.67 views

CVE-2017-8739

Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to obtain information to further compromise the user's system, due to the way that the Microsoft Edge scripting engine handles objects in memory, aka "Scripting Engine Information Disclosure Vulnerability".

4.3CVSS5.5AI score0.13004EPSS
CVE
CVE
added 2018/07/11 12:29 a.m.67 views

CVE-2018-8278

A spoofing vulnerability exists when Microsoft Edge improperly handles specific HTML content, aka "Microsoft Edge Spoofing Vulnerability." This affects Microsoft Edge.

6.1CVSS6.3AI score0.00361EPSS
CVE
CVE
added 2019/03/06 12:0 a.m.67 views

CVE-2019-0645

A remote code execution vulnerability exists when Microsoft Edge improperly accesses objects in memory, aka 'Microsoft Edge Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0634, CVE-2019-0650.

7.6CVSS8.6AI score0.37455EPSS
CVE
CVE
added 2019/03/06 12:0 a.m.67 views

CVE-2019-0650

A remote code execution vulnerability exists when Microsoft Edge improperly accesses objects in memory, aka 'Microsoft Edge Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0634, CVE-2019-0645.

7.6CVSS8.6AI score0.37455EPSS
CVE
CVE
added 2019/06/12 2:29 p.m.67 views

CVE-2019-1023

An information disclosure vulnerability exists when the scripting engine does not properly handle objects in memory in Microsoft Edge. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system.In a web-based attack scenario, an attacke...

6.5CVSS5.7AI score0.12446EPSS
CVE
CVE
added 2019/08/14 9:15 p.m.67 views

CVE-2019-1030

An information disclosure vulnerability exists when Microsoft Edge based on Edge HTML improperly handles objects in memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system.To exploit the vulnerability, in a web-based attack s...

4.3CVSS5.9AI score0.14046EPSS
CVE
CVE
added 2019/06/12 2:29 p.m.67 views

CVE-2019-1054

A security feature bypass vulnerability exists in Edge that allows for bypassing Mark of the Web Tagging (MOTW). Failing to set the MOTW means that a large number of Microsoft security technologies are bypassed.In a web-based attack scenario, an attacker could host a malicious website that is desig...

5.1CVSS5.9AI score0.01088EPSS
CVE
CVE
added 2021/02/25 11:15 p.m.67 views

CVE-2021-24100

Microsoft Edge for Android Information Disclosure Vulnerability

5CVSS5.1AI score0.04519EPSS
CVE
CVE
added 2016/09/14 10:59 a.m.66 views

CVE-2016-3377

The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-3350.

7.6CVSS7.7AI score0.236EPSS
CVE
CVE
added 2016/05/11 11:1 a.m.66 views

CVE-2016-4108

Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064.

7.6CVSS8.2AI score0.65591EPSS
CVE
CVE
added 2016/05/11 11:1 a.m.66 views

CVE-2016-4115

Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064.

7.6CVSS8.2AI score0.06491EPSS
CVE
CVE
added 2017/07/11 9:29 p.m.66 views

CVE-2017-8603

Microsoft Edge in Microsoft Windows 10 1511, 1607, and 1703, and Windows Server 2016 allow an attacker to execute arbitrary code in the context of the current user when the JavaScript engine fails to render when handling objects in memory in Microsoft Edge, aka "Scripting Engine Memory Corruption V...

7.6CVSS7.5AI score0.78054EPSS
CVE
CVE
added 2017/07/11 9:29 p.m.66 views

CVE-2017-8609

Microsoft Internet Explorer in Microsoft Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allow an attacker to execute arbitrary code in the context of the current user when the JavaScript engine fails to render when handling objects in memory in Microsoft Internet Explorer, aka "Scri...

7.6CVSS7.5AI score0.78054EPSS
CVE
CVE
added 2017/08/08 9:29 p.m.66 views

CVE-2017-8638

Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to execute arbitrary code in the context of the current user due to the way that Microsoft browser JavaScript engines render content when handling objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is...

7.6CVSS7.8AI score0.82712EPSS
CVE
CVE
added 2017/08/08 9:29 p.m.66 views

CVE-2017-8642

Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to elevate privileges due to the way that Microsoft Edge validates JavaScript under specific conditions, aka "Microsoft Edge Elevation of Privilege Vulnerability". This CVE ID is unique from CVE-2017-8503.

6.1CVSS7AI score0.01161EPSS
CVE
CVE
added 2017/09/13 1:29 a.m.66 views

CVE-2017-8751

Microsoft Edge in Microsoft Windows 1703 allows an attacker to execute arbitrary code in the context of the current user, due to the way that Microsoft Edge accesses objects in memory, aka "Microsoft Edge Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-8731, CVE-2017-8734, and...

7.6CVSS7.7AI score0.6165EPSS
Web
CVE
CVE
added 2018/05/09 7:29 p.m.66 views

CVE-2018-0943

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8130, CVE-2018-8133, CVE-...

7.6CVSS7.4AI score0.72843EPSS
CVE
CVE
added 2018/05/09 7:29 p.m.66 views

CVE-2018-8128

A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge, aka "Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-0945, CVE-2018-0946, CVE-2018-0951, CVE...

7.6CVSS7.7AI score0.77559EPSS
CVE
CVE
added 2018/05/09 7:29 p.m.66 views

CVE-2018-8133

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-0943, CVE-2018-8130, CVE-...

7.6CVSS7.4AI score0.72843EPSS
CVE
CVE
added 2019/01/08 9:29 p.m.66 views

CVE-2019-0566

An elevation of privilege vulnerability exists in Microsoft Edge Browser Broker COM object, aka "Microsoft Edge Elevation of Privilege Vulnerability." This affects Microsoft Edge.

8.8CVSS7.5AI score0.28538EPSS
CVE
CVE
added 2019/03/06 12:0 a.m.66 views

CVE-2019-0649

A vulnerability exists in Microsoft Chakra JIT server, aka 'Scripting Engine Elevation of Privileged Vulnerability'.

8.1CVSS8.1AI score0.05465EPSS
Total number of security vulnerabilities903