Lucene search

K
MicrosoftEdge

903 matches found

CVE
CVE
added 2019/09/11 10:15 p.m.66 views

CVE-2019-1299

An information disclosure vulnerability exists when Microsoft Edge based on Edge HTML improperly handles objects in memory, aka 'Microsoft Edge based on Edge HTML Information Disclosure Vulnerability'.

6.5CVSS6.6AI score0.26457EPSS
CVE
CVE
added 2016/05/11 11:0 a.m.65 views

CVE-2016-1103

Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064.

7.6CVSS8.2AI score0.53066EPSS
Web
CVE
CVE
added 2016/10/14 2:59 a.m.65 views

CVE-2016-3389

The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-3386, CVE-2016-7190, and CVE-2016...

7.6CVSS7.6AI score0.78358EPSS
CVE
CVE
added 2016/05/11 11:1 a.m.65 views

CVE-2016-4112

Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064.

7.6CVSS8.2AI score0.06491EPSS
CVE
CVE
added 2017/06/15 1:29 a.m.65 views

CVE-2017-8548

Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an attacker to obtain information to further compromise the user's system when Microsoft Edge improperly handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID i...

7.6CVSS5.8AI score0.74995EPSS
CVE
CVE
added 2017/09/13 1:29 a.m.65 views

CVE-2017-8660

Microsoft Edge in Microsoft Windows 10 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to the way that Microsoft browser JavaScript engines render content when handling objects in memory, aka "Scripting Engine Memory Cor...

9.3CVSS7.2AI score0.76981EPSS
CVE
CVE
added 2017/08/08 9:29 p.m.65 views

CVE-2017-8674

Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to execute arbitrary code in the context of the current user due to the way that Microsoft browser JavaScript engines render content when handling objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is...

7.6CVSS7.8AI score0.82712EPSS
CVE
CVE
added 2018/01/04 2:29 p.m.65 views

CVE-2018-0803

Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to access information from one domain and inject it into another domain, due to how Microsoft Edge enforces cross-domain policies, aka "Microsoft Edge Elevation of Privilege Vulnerability...

5.8CVSS4.7AI score0.03626EPSS
CVE
CVE
added 2018/04/12 1:29 a.m.65 views

CVE-2018-1023

A remote code execution vulnerability exists in the way that Microsoft browsers access objects in memory, aka "Microsoft Browser Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore.

7.6CVSS7AI score0.19945EPSS
CVE
CVE
added 2018/07/11 12:29 a.m.65 views

CVE-2018-8290

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8280, CVE-2018-8286, CVE-...

7.6CVSS6.4AI score0.29136EPSS
CVE
CVE
added 2018/09/13 12:29 a.m.65 views

CVE-2018-8459

A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8354, CVE-2018-8391, CVE-2018-8456, CVE-2018-8...

7.6CVSS7.5AI score0.05188EPSS
CVE
CVE
added 2019/04/09 12:29 a.m.65 views

CVE-2019-0678

An elevation of privilege vulnerability exists when Microsoft Edge does not properly enforce cross-domain policies, which could allow an attacker to access information from one domain and inject it into another domain.In a web-based attack scenario, an attacker could host a website that is used to ...

6.8CVSS7.1AI score0.04595EPSS
CVE
CVE
added 2023/12/07 9:15 p.m.65 views

CVE-2023-38174

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

4.3CVSS5.2AI score0.00448EPSS
CVE
CVE
added 2015/08/14 10:59 a.m.64 views

CVE-2015-2446

Microsoft Internet Explorer 11 and Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Memory Corruption Vulnerability," a different vulnerability than CVE-2015-2447.

9.3CVSS7.6AI score0.28828EPSS
CVE
CVE
added 2015/12/09 11:59 a.m.64 views

CVE-2015-6159

Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Browser Memory Corruption Vulnerability," a different vulnerability than CVE-2015-6140, CVE-2015-6142, CVE-2015-...

9.3CVSS7.4AI score0.2665EPSS
CVE
CVE
added 2016/04/12 11:59 p.m.64 views

CVE-2016-0157

Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Edge Memory Corruption Vulnerability," a different vulnerability than CVE-2016-0155 and CVE-2016-0156.

7.6CVSS7.6AI score0.20272EPSS
CVE
CVE
added 2016/07/13 1:59 a.m.64 views

CVE-2016-3264

Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Browser Memory Corruption Vulnerability."

7.6CVSS8.1AI score0.20455EPSS
CVE
CVE
added 2016/05/11 11:1 a.m.64 views

CVE-2016-4110

Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064.

7.6CVSS8.2AI score0.06955EPSS
CVE
CVE
added 2016/11/10 6:59 a.m.64 views

CVE-2016-7196

Microsoft Internet Explorer 10 and 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Browser Memory Corruption Vulnerability."

7.6CVSS7.6AI score0.54368EPSS
CVE
CVE
added 2016/12/20 6:59 a.m.64 views

CVE-2016-7282

Cross-site scripting (XSS) vulnerability in Microsoft Internet Explorer 9 through 11 and Microsoft Edge allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka "Microsoft Browser Information Disclosure Vulnerability."

6.1CVSS6.2AI score0.02259EPSS
CVE
CVE
added 2017/06/15 1:29 a.m.64 views

CVE-2017-8549

Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an attacker to obtain information to further compromise the user's system when Microsoft Edge improperly handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID i...

7.6CVSS5.8AI score0.74995EPSS
CVE
CVE
added 2017/07/11 9:29 p.m.64 views

CVE-2017-8598

Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allow an attacker to execute arbitrary code in the context of the current user when the JavaScript engine fails to render when handling objects in memory in Microsoft Edge, aka "Scripting Engine Memory Corrup...

7.6CVSS7.5AI score0.78054EPSS
CVE
CVE
added 2017/08/08 9:29 p.m.64 views

CVE-2017-8644

Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to disclose information due to the way that Microsoft Edge handles objects in memory, aka "Microsoft Edge Information Disclosure Vulnerability". This CVE ID is unique from CVE-2017-8652 and CVE...

4.3CVSS5.6AI score0.61658EPSS
Web
CVE
CVE
added 2017/08/08 9:29 p.m.64 views

CVE-2017-8671

Microsoft Edge in Microsoft Windows 10 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user due to the way that Microsoft browser JavaScript engines render content when handling objects in memory, aka "Scripting Engine Memory Corr...

7.6CVSS7.8AI score0.82712EPSS
CVE
CVE
added 2017/09/13 1:29 a.m.64 views

CVE-2017-8734

Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to the way that Microsoft Edge accesses objects in memory, aka "Microsoft Edge Memory Corruption Vulnerability". This CVE ID is...

7.6CVSS7.1AI score0.6165EPSS
Web
CVE
CVE
added 2017/09/13 1:29 a.m.64 views

CVE-2017-8737

Microsoft Windows PDF Library in Microsoft Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to the way that Windows PDF Library handles objects ...

7.6CVSS7.3AI score0.34224EPSS
CVE
CVE
added 2017/09/13 1:29 a.m.64 views

CVE-2017-8753

Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to the way that the Microsoft Edge scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerab...

7.6CVSS7.1AI score0.76981EPSS
CVE
CVE
added 2018/05/09 7:29 p.m.64 views

CVE-2018-8130

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-0943, CVE-2018-8133, CVE-...

7.6CVSS7.4AI score0.72843EPSS
CVE
CVE
added 2018/09/13 12:29 a.m.64 views

CVE-2018-8315

An information disclosure vulnerability exists when the browser scripting engine improperly handle object types, aka "Microsoft Scripting Engine Information Disclosure Vulnerability." This affects ChakraCore, Internet Explorer 11, Microsoft Edge, Internet Explorer 10.

4.2CVSS4.8AI score0.00749EPSS
CVE
CVE
added 2018/08/15 5:29 p.m.64 views

CVE-2018-8403

A remote code execution vulnerability exists in the way that Microsoft browsers access objects in memory, aka "Microsoft Browser Memory Corruption Vulnerability." This affects Internet Explorer 11, Microsoft Edge, Internet Explorer 10.

7.6CVSS7AI score0.09861EPSS
CVE
CVE
added 2018/09/13 12:29 a.m.64 views

CVE-2018-8465

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8367, CVE-2018-8466, CVE-...

7.6CVSS7.4AI score0.79783EPSS
CVE
CVE
added 2018/11/14 1:29 a.m.64 views

CVE-2018-8543

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8541, CVE-2018-8542, CVE-...

7.6CVSS6.5AI score0.0569EPSS
CVE
CVE
added 2016/03/09 11:59 a.m.63 views

CVE-2016-0102

Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Browser Memory Corruption Vulnerability," a different vulnerability than CVE-2016-0103, CVE-2016-0106, CVE-2016-...

7.6CVSS7.6AI score0.38033EPSS
CVE
CVE
added 2016/07/13 1:59 a.m.63 views

CVE-2016-3273

The XSS Filter in Microsoft Internet Explorer 9 through 11 and Microsoft Edge does not properly restrict JavaScript code, which allows remote attackers to obtain sensitive information via a crafted web site, aka "Microsoft Browser Information Disclosure Vulnerability."

5.3CVSS5.6AI score0.22915EPSS
CVE
CVE
added 2016/08/09 9:59 p.m.63 views

CVE-2016-3296

The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability."

7.6CVSS7.2AI score0.2363EPSS
CVE
CVE
added 2017/09/13 1:29 a.m.63 views

CVE-2017-8728

Microsoft Windows PDF Library in Microsoft Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to the way that Windows PDF Library handles objects ...

7.6CVSS7.3AI score0.34224EPSS
CVE
CVE
added 2018/02/15 2:29 a.m.63 views

CVE-2018-0839

Microsoft Edge in Microsoft Windows 10 1703 allows information disclosure, due to how Edge handles objects in memory, aka "Microsoft Edge Information Disclosure Vulnerability". This CVE ID is unique from CVE-2018-0763.

4.3CVSS4.2AI score0.15613EPSS
CVE
CVE
added 2018/07/11 12:29 a.m.63 views

CVE-2018-8294

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8280, CVE-2018-8286, CVE-...

7.6CVSS6.4AI score0.29136EPSS
CVE
CVE
added 2018/09/13 12:29 a.m.63 views

CVE-2018-8452

An information disclosure vulnerability exists when the scripting engine does not properly handle objects in memory in Microsoft browsers, aka "Scripting Engine Information Disclosure Vulnerability." This affects ChakraCore, Internet Explorer 11, Microsoft Edge.

4.3CVSS5AI score0.0289EPSS
CVE
CVE
added 2021/11/24 1:15 a.m.63 views

CVE-2021-42308

Microsoft Edge (Chromium-based) Spoofing Vulnerability

7.5CVSS4AI score0.0136EPSS
CVE
CVE
added 2021/11/24 1:15 a.m.63 views

CVE-2021-43221

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

4.2CVSS4.8AI score0.01126EPSS
CVE
CVE
added 2015/11/11 12:59 p.m.62 views

CVE-2015-6078

Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Browser Memory Corruption Vulnerability," a different vulnerability than CVE-2015-6065.

9.3CVSS7.5AI score0.1631EPSS
CVE
CVE
added 2016/07/13 1:59 a.m.62 views

CVE-2016-3274

Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to conduct content-spoofing attacks via a crafted URL, aka "Microsoft Browser Spoofing Vulnerability."

3.1CVSS5.4AI score0.0717EPSS
CVE
CVE
added 2016/05/11 11:1 a.m.62 views

CVE-2016-4114

Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064.

7.6CVSS8.2AI score0.06491EPSS
CVE
CVE
added 2016/05/11 11:1 a.m.62 views

CVE-2016-4116

Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064.

7.6CVSS8.2AI score0.06137EPSS
CVE
CVE
added 2017/11/15 3:29 a.m.62 views

CVE-2017-11803

Microsoft Edge in Microsoft Windows 10 1703, 1709 and Windows Server, version 1709 allows an attacker to obtain information to further compromise the user's system, due to how Microsoft Edge handles objects in memory, aka "Microsoft Edge Information Disclosure Vulnerability". This CVE ID is unique ...

4.3CVSS4AI score0.12253EPSS
CVE
CVE
added 2017/11/15 3:29 a.m.62 views

CVE-2017-11845

Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to execute arbitrary code in the context of the current user, due to how Microsoft Edge handles objects in memory, aka "Microsoft Edge Memory Corruption Vulnerability".

7.6CVSS7.5AI score0.20003EPSS
CVE
CVE
added 2018/04/12 1:29 a.m.62 views

CVE-2018-0892

An information disclosure vulnerability exists when Microsoft Edge improperly handles objects in memory, aka "Microsoft Edge Information Disclosure Vulnerability." This affects Microsoft Edge. This CVE ID is unique from CVE-2018-0998.

4.3CVSS5.5AI score0.10128EPSS
CVE
CVE
added 2018/06/14 12:29 p.m.62 views

CVE-2018-8229

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8227.

7.6CVSS7.4AI score0.81924EPSS
CVE
CVE
added 2018/08/15 5:29 p.m.62 views

CVE-2018-8266

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8380, CVE-2018-8381, CVE-...

7.6CVSS7.4AI score0.83017EPSS
Total number of security vulnerabilities903