Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
MicrosoftEdge

901 matches found

CVE
CVEadded 2016/04/12 11:59 p.m.55 views

CVE-2016-0161

Microsoft Edge allows remote attackers to bypass the Same Origin Policy via unspecified vectors, aka "Microsoft Edge Elevation of Privilege Vulnerability," a different vulnerability than CVE-2016-0158.

6.5CVSS6.3AI score0.23982EPSS
CVE
CVEadded 2016/10/14 2:59 a.m.55 views

CVE-2016-3331

Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Browser Memory Corruption Vulnerability."

9.3CVSS7.6AI score0.23334EPSS
CVE
CVEadded 2016/10/14 2:59 a.m.55 views

CVE-2016-3382

The scripting engines in Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, as demonstrated by the Chakra JavaScript engine, aka "Scripting Engine Memory Corruption Vul...

9.3CVSS7.4AI score0.23334EPSS
CVE
CVEadded 2016/10/14 2:59 a.m.55 views

CVE-2016-3387

Microsoft Internet Explorer 10 and 11 and Microsoft Edge do not properly restrict access to private namespaces, which allows remote attackers to gain privileges via unspecified vectors, aka "Microsoft Browser Elevation of Privilege Vulnerability," a different vulnerability than CVE-2016-3388.

7.5CVSS6.2AI score0.47517EPSS
CVE
CVEadded 2016/10/14 2:59 a.m.55 views

CVE-2016-3389

The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-3386, CVE-2016-7190, and CVE-2016...

7.6CVSS7.6AI score0.79242EPSS
CVE
CVEadded 2017/07/17 1:18 p.m.55 views

CVE-2017-0152

A remote code execution vulnerability exists in the way affected Microsoft scripting engine render when handling objects in memory in Microsoft browsers. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacke...

9.3CVSS8AI score0.14554EPSS
CVE
CVEadded 2017/06/15 1:29 a.m.55 views

CVE-2017-8504

Microsoft Edge in Windows 10 1607 and 1703, and Windows Server 2016 allows an attacker to read the URL of a cross-origin request when the Microsoft Edge Fetch API incorrectly handles a filtered response type, aka "Microsoft Edge Information Disclosure Vulnerability". This CVE ID is unique from CVE-...

4.3CVSS4.4AI score0.11174EPSS
CVE
CVEadded 2017/06/15 1:29 a.m.55 views

CVE-2017-8549

Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an attacker to obtain information to further compromise the user's system when Microsoft Edge improperly handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID i...

7.6CVSS5.8AI score0.74995EPSS
CVE
CVEadded 2017/07/11 9:29 p.m.55 views

CVE-2017-8598

Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allow an attacker to execute arbitrary code in the context of the current user when the JavaScript engine fails to render when handling objects in memory in Microsoft Edge, aka "Scripting Engine Memory Corrup...

7.6CVSS7.5AI score0.78054EPSS
CVE
CVEadded 2017/08/08 9:29 p.m.55 views

CVE-2017-8637

Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to bypass Arbitrary Code Guard (ACG) due to how Microsoft Edge accesses memory in code compiled by the Edge Just-In-Time (JIT) compiler, aka "Scripting Engine Security Feature Bypass Vulnerability".

5.3CVSS6.5AI score0.18274EPSS
CVE
CVEadded 2017/08/08 9:29 p.m.55 views

CVE-2017-8650

Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to exploit a security feature bypass due to Microsoft Edge not properly enforcing same-origin policies, aka "Microsoft Edge Security Feature Bypass Vulnerability".

5.8CVSS6.6AI score0.00718EPSS
CVE
CVEadded 2017/09/13 1:29 a.m.55 views

CVE-2017-8660

Microsoft Edge in Microsoft Windows 10 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to the way that Microsoft browser JavaScript engines render content when handling objects in memory, aka "Scripting Engine Memory Cor...

9.3CVSS7.2AI score0.76981EPSS
CVE
CVEadded 2017/08/08 9:29 p.m.55 views

CVE-2017-8669

Microsoft browsers in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 R2, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allow an attacker to execute arbitrary code in the context of the current user due to Microsoft browsers impr...

7.6CVSS8.1AI score0.21953EPSS
CVE
CVEadded 2017/09/13 1:29 a.m.55 views

CVE-2017-8734

Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to the way that Microsoft Edge accesses objects in memory, aka "Microsoft Edge Memory Corruption Vulnerability". This CVE ID is...

7.6CVSS7.1AI score0.6165EPSS
CVE
CVEadded 2017/09/13 1:29 a.m.55 views

CVE-2017-8753

Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to the way that the Microsoft Edge scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerab...

7.6CVSS7.1AI score0.76981EPSS
CVE
CVEadded 2018/09/13 12:29 a.m.55 views

CVE-2018-8465

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8367, CVE-2018-8466, CVE-...

7.6CVSS7.4AI score0.80167EPSS
CVE
CVEadded 2018/10/10 1:29 p.m.55 views

CVE-2018-8510

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8503, CVE-2018-8505, CVE-...

7.6CVSS7.4AI score0.07799EPSS
CVE
CVEadded 2015/10/14 1:59 a.m.54 views

CVE-2015-6057

Microsoft Edge allows remote attackers to obtain sensitive information from process memory via a crafted web site, aka "Microsoft Edge Information Disclosure Vulnerability."

5CVSS5.7AI score0.21101EPSS
CVE
CVEadded 2015/12/09 11:59 a.m.54 views

CVE-2015-6155

Microsoft Internet Explorer 10 and 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Browser Memory Corruption Vulnerability."

9.3CVSS7.6AI score0.1814EPSS
CVE
CVEadded 2016/08/09 9:59 p.m.54 views

CVE-2016-3329

Microsoft Internet Explorer 9 through 11 and Edge allow remote attackers to determine the existence of files via a crafted webpage, aka "Internet Explorer Information Disclosure Vulnerability."

5.3CVSS5.5AI score0.32707EPSS
CVE
CVEadded 2016/09/14 10:59 a.m.54 views

CVE-2016-3330

Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Edge Memory Corruption Vulnerability," a different vulnerability than CVE-2016-3294.

7.6CVSS7.8AI score0.23501EPSS
CVE
CVEadded 2017/08/08 9:29 p.m.54 views

CVE-2017-8671

Microsoft Edge in Microsoft Windows 10 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user due to the way that Microsoft browser JavaScript engines render content when handling objects in memory, aka "Scripting Engine Memory Corr...

7.6CVSS7.8AI score0.81883EPSS
CVE
CVEadded 2017/08/08 9:29 p.m.54 views

CVE-2017-8674

Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to execute arbitrary code in the context of the current user due to the way that Microsoft browser JavaScript engines render content when handling objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is...

7.6CVSS7.8AI score0.81883EPSS
CVE
CVEadded 2017/09/13 1:29 a.m.54 views

CVE-2017-8757

Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to the way Microsoft Edge handles objects in memory, aka "Microsoft Edge Remote Code Execution Vulnerability".

7.6CVSS7.4AI score0.22389EPSS
CVE
CVEadded 2018/05/09 7:29 p.m.54 views

CVE-2018-8177

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects ChakraCore. This CVE ID is unique from CVE-2018-0943, CVE-2018-8130, CVE-2018-8133, CVE-2...

7.6CVSS7.4AI score0.72843EPSS
CVE
CVEadded 2018/06/14 12:29 p.m.54 views

CVE-2018-8227

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8229.

7.6CVSS7.4AI score0.81924EPSS
CVE
CVEadded 2018/07/11 12:29 a.m.54 views

CVE-2018-8262

A remote code execution vulnerability exists when Microsoft Edge improperly accesses objects in memory, aka "Microsoft Edge Memory Corruption Vulnerability." This affects Microsoft Edge. This CVE ID is unique from CVE-2018-8125, CVE-2018-8274, CVE-2018-8275, CVE-2018-8279, CVE-2018-8301.

7.6CVSS6.6AI score0.85081EPSS
CVE
CVEadded 2018/10/10 1:29 p.m.54 views

CVE-2018-8530

A security feature bypass vulnerability exists when Microsoft Edge improperly handles requests of different origins, aka "Microsoft Edge Security Feature Bypass Vulnerability." This affects Microsoft Edge. This CVE ID is unique from CVE-2018-8512.

4.3CVSS5.5AI score0.0344EPSS
CVE
CVEadded 2015/12/09 11:59 a.m.53 views

CVE-2015-6139

Microsoft Internet Explorer 11 and Microsoft Edge mishandle content types, which allows remote attackers to execute arbitrary web script in a privileged context via a crafted web site, aka "Microsoft Browser Elevation of Privilege Vulnerability."

9.3CVSS7AI score0.23067EPSS
CVE
CVEadded 2015/12/09 11:59 a.m.53 views

CVE-2015-6153

Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Browser Memory Corruption Vulnerability," a different vulnerability than CVE-2015-6140, CVE-2015-6142, CVE-2015-...

9.3CVSS7.4AI score0.2665EPSS
CVE
CVEadded 2016/06/16 1:59 a.m.53 views

CVE-2016-3214

The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-3199.

9.3CVSS8.6AI score0.21571EPSS
CVE
CVEadded 2017/07/11 9:29 p.m.53 views

CVE-2017-8599

Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an attacker to trick a user into loading a page with malicious content when the Edge Content Security Policy (CSP) fails to properly validate certain specially crafted documents, aka "Microsoft Edge Se...

6.5CVSS6.2AI score0.16756EPSS
CVE
CVEadded 2017/09/13 1:29 a.m.53 views

CVE-2017-8643

Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to leave a malicious website open during user clipboard activities, due to the way that Microsoft Edge handles clipboard events, aka "Microsoft Edge Information Disclosure Vulnerability". This ...

4.3CVSS4.9AI score0.12825EPSS
CVE
CVEadded 2017/09/13 1:29 a.m.53 views

CVE-2017-8735

Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to trick a user by redirecting the user to a specially crafted website, due to the way that Microsoft Edge parses HTTP content, aka "Microsoft Edge Spoofing Vulnerability". This CVE ID is uniqu...

4.3CVSS5AI score0.02547EPSS
CVE
CVEadded 2017/09/13 1:29 a.m.53 views

CVE-2017-8754

Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to trick a user into loading a page containing malicious content, due to the way that the Edge Content Security Policy (CSP) validates certain specially crafted documents, aka "Microsoft Edge S...

4.2CVSS5.1AI score0.06267EPSS
CVE
CVEadded 2018/02/15 2:29 a.m.53 views

CVE-2018-0839

Microsoft Edge in Microsoft Windows 10 1703 allows information disclosure, due to how Edge handles objects in memory, aka "Microsoft Edge Information Disclosure Vulnerability". This CVE ID is unique from CVE-2018-0763.

4.3CVSS4.2AI score0.10128EPSS
CVE
CVEadded 2018/05/09 7:29 p.m.53 views

CVE-2018-1021

An information disclosure vulnerability exists when Microsoft Edge improperly handles objects in memory, aka "Microsoft Edge Information Disclosure Vulnerability." This affects Microsoft Edge. This CVE ID is unique from CVE-2018-8123.

4.3CVSS4.2AI score0.06705EPSS
CVE
CVEadded 2018/07/11 12:29 a.m.53 views

CVE-2018-8297

An information disclosure vulnerability exists when Microsoft Edge improperly handles objects in memory, aka "Microsoft Edge Information Disclosure Vulnerability." This affects Microsoft Edge. This CVE ID is unique from CVE-2018-8289, CVE-2018-8324, CVE-2018-8325.

4.3CVSS4.3AI score0.04728EPSS
CVE
CVEadded 2021/11/24 1:15 a.m.53 views

CVE-2021-43220

Microsoft Edge for iOS Spoofing Vulnerability

7.5CVSS4AI score0.01372EPSS
CVE
CVEadded 2015/11/11 11:59 a.m.52 views

CVE-2015-6064

Microsoft Internet Explorer 10 and 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Browser Memory Corruption Vulnerability," a different vulnerability than CVE-2015-6084 and CVE-2015-6085.

9.3CVSS7.5AI score0.32615EPSS
CVE
CVEadded 2016/12/20 6:59 a.m.52 views

CVE-2016-7280

Cross-site scripting (XSS) vulnerability in Microsoft Edge allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka "Microsoft Edge Information Disclosure Vulnerability," a different vulnerability than CVE-2016-7206.

6.1CVSS5.8AI score0.09084EPSS
CVE
CVEadded 2017/08/08 9:29 p.m.52 views

CVE-2017-8659

Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to obtain information to further compromise the user's system due to the Chakra scripting engine not properly handling objects in memory, aka "Scripting Engine Information Disclosure Vulnerability".

4.3CVSS4.8AI score0.12825EPSS
CVE
CVEadded 2018/03/14 5:29 p.m.52 views

CVE-2018-0879

Microsoft Edge in Windows 10 1709 allows information disclosure, due to how Edge handles objects in memory, aka "Microsoft Edge Information Disclosure Vulnerability".

7.5CVSS6.9AI score0.13525EPSS
CVE
CVEadded 2018/07/11 12:29 a.m.52 views

CVE-2018-8289

An information disclosure vulnerability exists when Microsoft Edge improperly handles objects in memory, aka "Microsoft Edge Information Disclosure Vulnerability." This affects Microsoft Edge. This CVE ID is unique from CVE-2018-8297, CVE-2018-8324, CVE-2018-8325.

4.3CVSS4.3AI score0.04728EPSS
CVE
CVEadded 2018/09/13 12:29 a.m.52 views

CVE-2018-8366

An information disclosure vulnerability exists when the Microsoft Edge Fetch API incorrectly handles a filtered response type, aka "Microsoft Edge Information Disclosure Vulnerability." This affects Microsoft Edge.

3.1CVSS4.7AI score0.02144EPSS
CVE
CVEadded 2018/08/15 5:29 p.m.52 views

CVE-2018-8388

A spoofing vulnerability exists when Microsoft Edge improperly handles specific HTML content, aka "Microsoft Edge Spoofing Vulnerability." This affects Microsoft Edge. This CVE ID is unique from CVE-2018-8383.

4.3CVSS5.6AI score0.01289EPSS
CVE
CVEadded 2018/10/10 1:29 p.m.52 views

CVE-2018-8509

A remote code execution vulnerability exists when Microsoft Edge improperly accesses objects in memory, aka "Microsoft Edge Memory Corruption Vulnerability." This affects Microsoft Edge. This CVE ID is unique from CVE-2018-8473.

7.6CVSS7.6AI score0.07799EPSS
CVE
CVEadded 2018/10/10 1:29 p.m.52 views

CVE-2018-8511

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8503, CVE-2018-8505, CVE-...

7.6CVSS7.4AI score0.07799EPSS
CVE
CVEadded 2018/10/10 1:29 p.m.52 views

CVE-2018-8513

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8503, CVE-2018-8505, CVE-...

7.6CVSS7.4AI score0.07799EPSS
CVE
CVEadded 2016/07/13 1:59 a.m.51 views

CVE-2016-3244

Microsoft Edge allows remote attackers to bypass the ASLR protection mechanism via a crafted web site, aka "Microsoft Edge Security Feature Bypass."

4.3CVSS5.8AI score0.20014EPSS
Total number of security vulnerabilities901