Lucene search

K
MicrosoftEdge

903 matches found

CVE
CVE
added 2017/03/17 12:59 a.m.95 views

CVE-2017-0032

A remote code execution vulnerability exists in the way affected Microsoft scripting engines render when handling objects in memory in Microsoft browsers. These vulnerabilities could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An at...

7.6CVSS7.9AI score0.80217EPSS
CVE
CVE
added 2019/04/08 11:29 p.m.95 views

CVE-2019-0612

A security feature bypass vulnerability exists when Click2Play protection in Microsoft Edge improperly handles flash objects. By itself, this bypass vulnerability does not allow arbitrary code execution, aka 'Microsoft Edge Security Feature Bypass Vulnerability'.

5.3CVSS6.8AI score0.13975EPSS
CVE
CVE
added 2019/08/14 9:15 p.m.95 views

CVE-2019-1195

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who s...

7.6CVSS6.3AI score0.01308EPSS
CVE
CVE
added 2019/04/08 11:29 p.m.94 views

CVE-2019-0611

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0592.

7.6CVSS7.4AI score0.38317EPSS
CVE
CVE
added 2019/05/16 7:29 p.m.94 views

CVE-2019-0916

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0912, CVE-2019-0913, CVE-2019-0914, CVE-2019-0915, CVE-2019-0917, ...

7.6CVSS7.5AI score0.04538EPSS
CVE
CVE
added 2022/02/07 5:15 p.m.94 views

CVE-2022-23263

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

7.7CVSS6.7AI score0.00938EPSS
CVE
CVE
added 2024/08/23 11:15 p.m.94 views

CVE-2024-38207

Microsoft Edge (HTML-based) Memory Corruption Vulnerability

6.3CVSS6.2AI score0.00299EPSS
CVE
CVE
added 2017/11/15 3:29 a.m.93 views

CVE-2017-11840

ChakraCore and Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to gain the same user rights as the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vuln...

7.6CVSS7.5AI score
CVE
CVE
added 2017/12/12 9:29 p.m.93 views

CVE-2017-11918

ChakraCore and Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to gain the same user rights as the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is un...

7.6CVSS7.6AI score0.76161EPSS
CVE
CVE
added 2018/08/15 5:29 p.m.93 views

CVE-2018-8383

A spoofing vulnerability exists when Microsoft Edge does not properly parse HTTP content, aka "Microsoft Edge Spoofing Vulnerability." This affects Microsoft Edge. This CVE ID is unique from CVE-2018-8388.

4.3CVSS5.6AI score0.02348EPSS
CVE
CVE
added 2019/05/16 7:29 p.m.93 views

CVE-2019-0923

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0912, CVE-2019-0913, CVE-2019-0914, CVE-2019-0915, CVE-2019-0916, ...

7.6CVSS7.5AI score0.04538EPSS
CVE
CVE
added 2020/07/14 11:15 p.m.93 views

CVE-2020-1462

An information disclosure vulnerability exists when Skype for Business is accessed via Microsoft Edge (EdgeHTML-based), aka 'Skype for Business via Microsoft Edge (EdgeHTML-based) Information Disclosure Vulnerability'.

4.3CVSS5.8AI score0.12782EPSS
CVE
CVE
added 2024/08/12 1:38 p.m.93 views

CVE-2024-38219

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

9CVSS6.9AI score0.00439EPSS
CVE
CVE
added 2024/10/17 11:15 p.m.93 views

CVE-2024-43566

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

9.8CVSS8.1AI score0.08929EPSS
CVE
CVE
added 2024/11/14 8:15 p.m.93 views

CVE-2024-49025

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

5.4CVSS5.1AI score0.00276EPSS
CVE
CVE
added 2025/04/04 1:15 a.m.93 views

CVE-2025-29815

Use after free in Microsoft Edge (Chromium-based) allows an authorized attacker to execute code over a network.

7.6CVSS7.8AI score0.00057EPSS
CVE
CVE
added 2017/11/15 3:29 a.m.92 views

CVE-2017-11858

ChakraCore and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, and Microsoft Edge and Internet Explorer in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows a...

7.6CVSS7.6AI score
CVE
CVE
added 2017/12/12 9:29 p.m.92 views

CVE-2017-11909

ChakraCore and Windows 10 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CV...

7.6CVSS7.9AI score0.76161EPSS
CVE
CVE
added 2018/01/04 2:29 p.m.92 views

CVE-2018-0762

Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, and Internet Explorer and Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to execute arbitrary code in the ...

7.6CVSS6.7AI score0.79277EPSS
CVE
CVE
added 2018/03/14 5:29 p.m.92 views

CVE-2018-0891

ChakraCore, and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, and Internet Explorer and Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allow information disclosure, due to...

4.3CVSS5.1AI score0.53483EPSS
CVE
CVE
added 2018/05/09 7:29 p.m.92 views

CVE-2018-0954

A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka "Scripting Engine Memory Corruption Vulnerability." This affects Internet Explorer 9, ChakraCore, Internet Explorer 11, Microsoft Edge, Internet Explorer 10. This CVE ID...

7.6CVSS7.7AI score0.77559EPSS
CVE
CVE
added 2019/04/09 12:29 a.m.92 views

CVE-2019-0746

An information disclosure vulnerability exists when the scripting engine does not properly handle objects in memory in Microsoft Edge, aka 'Scripting Engine Information Disclosure Vulnerability'.

6.5CVSS6.6AI score0.22506EPSS
CVE
CVE
added 2019/05/16 7:29 p.m.92 views

CVE-2019-0917

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0912, CVE-2019-0913, CVE-2019-0914, CVE-2019-0915, CVE-2019-0916, ...

7.6CVSS7.5AI score0.04538EPSS
CVE
CVE
added 2020/05/21 11:15 p.m.92 views

CVE-2020-1065

A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka 'Scripting Engine Memory Corruption Vulnerability'.

7.6CVSS7.6AI score0.04538EPSS
CVE
CVE
added 2017/03/17 12:59 a.m.91 views

CVE-2017-0135

Microsoft Edge allows remote attackers to bypass the Same Origin Policy for HTML elements in other browser windows, aka "Microsoft Edge Security Feature Bypass Vulnerability." This vulnerability is different from those described in CVE-2017-0066 and CVE-2017-0140.

4.2CVSS4.3AI score0.22472EPSS
CVE
CVE
added 2017/11/15 3:29 a.m.91 views

CVE-2017-11836

ChakraCore, and Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to take control of an affected system, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vuln...

7.6CVSS7.4AI score
CVE
CVE
added 2017/11/15 3:29 a.m.91 views

CVE-2017-11843

ChakraCore and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 R2, and Microsoft Edge and Internet Explorer in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an at...

7.6CVSS7.5AI score
CVE
CVE
added 2017/12/12 9:29 p.m.91 views

CVE-2017-11911

ChakraCore and Windows 10 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CV...

7.6CVSS7.9AI score0.76161EPSS
CVE
CVE
added 2017/12/12 9:29 p.m.91 views

CVE-2017-11914

ChakraCore and Microsoft Edge in Windows 10 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to gain the same user rights as the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique f...

7.6CVSS7.6AI score0.76161EPSS
CVE
CVE
added 2019/04/09 3:29 a.m.91 views

CVE-2019-0773

A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0609, CVE-2019-0639, CVE-2019-0680, CVE-2019-0769, CVE-2019-0770, CVE-2019-0771,...

7.6CVSS7.6AI score0.10875EPSS
CVE
CVE
added 2019/04/09 9:29 p.m.91 views

CVE-2019-0806

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0810, CVE-2019-0812, CVE-2019-0829, CVE-2019-0860, CVE-2019-0861.

7.6CVSS7.5AI score0.44847EPSS
CVE
CVE
added 2019/05/16 7:29 p.m.91 views

CVE-2019-0933

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0912, CVE-2019-0913, CVE-2019-0914, CVE-2019-0915, CVE-2019-0916, ...

7.6CVSS7.5AI score0.04538EPSS
CVE
CVE
added 2020/03/12 4:15 p.m.91 views

CVE-2020-0816

A remote code execution vulnerability exists when Microsoft Edge improperly accesses objects in memory, aka 'Microsoft Edge Memory Corruption Vulnerability'.

9.3CVSS9.2AI score0.20625EPSS
CVE
CVE
added 2020/07/14 11:15 p.m.91 views

CVE-2020-1433

An information disclosure vulnerability exists when Microsoft Edge PDF Reader improperly handles objects in memory, aka 'Microsoft Edge PDF Information Disclosure Vulnerability'.

6.5CVSS6.9AI score0.22806EPSS
CVE
CVE
added 2017/05/12 2:29 p.m.90 views

CVE-2017-0230

A remote code execution vulnerability exists in Microsoft Edge in the way JavaScript engines render when handling objects in memory, aka "Scripting Engine Memory Corruption Vulnerability." This CVE ID is unique from CVE-2017-0224, CVE-2017-0228, CVE-2017-0229, CVE-2017-0234, CVE-2017-0235, CVE-2017...

7.6CVSS7.7AI score0.55566EPSS
CVE
CVE
added 2018/01/04 2:29 p.m.90 views

CVE-2018-0772

Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, and Internet Explorer and Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to execute arbitrary code in the ...

7.6CVSS6.7AI score0.79277EPSS
CVE
CVE
added 2018/02/15 2:29 a.m.90 views

CVE-2018-0840

Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, and Internet Explorer and Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the scripting e...

9.3CVSS7.3AI score0.7974EPSS
CVE
CVE
added 2018/05/09 7:29 p.m.90 views

CVE-2018-0945

A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge, aka "Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-0946, CVE-2018-0951, CVE-2018-0953, CVE...

7.6CVSS7.7AI score0.77559EPSS
CVE
CVE
added 2019/03/06 12:0 a.m.90 views

CVE-2019-0593

A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0590, CVE-2019-0591, CVE-2019-0605, CVE-2019-0607, CVE-2019-0610, CVE-2019-0640,...

7.6CVSS7.7AI score0.34646EPSS
CVE
CVE
added 2019/06/12 2:29 p.m.90 views

CVE-2019-1081

An information disclosure vulnerability exists when affected Microsoft browsers improperly handle objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system.To exploit the vulnerability, in a web-based attack scenari...

6.5CVSS5.7AI score0.01125EPSS
CVE
CVE
added 2016/05/11 1:59 a.m.89 views

CVE-2016-0193

The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-0186 and CVE-2016-0191.

7.6CVSS7.7AI score0.27002EPSS
CVE
CVE
added 2017/03/17 12:59 a.m.89 views

CVE-2017-0023

The PDF library in Microsoft Edge; Windows 8.1; Windows Server 2012 and R2; Windows RT 8.1; and Windows 10, 1511, and 1607 allows remote attackers to execute arbitrary code via a crafted PDF file, aka "Microsoft PDF Remote Code Execution Vulnerability."

7.6CVSS7.8AI score0.27879EPSS
CVE
CVE
added 2017/11/15 3:29 a.m.89 views

CVE-2017-11837

ChakraCore and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 R2, and Microsoft Edge and Internet Explorer in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attack...

7.6CVSS7.5AI score
CVE
CVE
added 2017/11/15 3:29 a.m.89 views

CVE-2017-11841

ChakraCore and Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to gain the same user rights as the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vuln...

7.6CVSS7.5AI score
CVE
CVE
added 2017/11/15 3:29 a.m.89 views

CVE-2017-11873

ChakraCore and Microsoft Edge in Windows 10 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to gain the same user rights as the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerabil...

7.6CVSS7.4AI score
CVE
CVE
added 2017/08/10 6:29 p.m.89 views

CVE-2017-8518

Microsoft Edge allows a remote code execution vulnerability due to the way it accesses objects in memory, aka "Scripting Engine Memory Corruption Vulnerability".

7.6CVSS6AI score0.2401EPSS
CVE
CVE
added 2018/01/04 2:29 p.m.89 views

CVE-2018-0780

Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to obtain information to further compromise the user's system, due to how the scripting engine handles objects in memory, aka "Scripting Engine Information Disclosure Vulnerability". This...

5.3CVSS5AI score0.72149EPSS
CVE
CVE
added 2019/03/06 12:0 a.m.89 views

CVE-2019-0590

A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0591, CVE-2019-0593, CVE-2019-0605, CVE-2019-0607, CVE-2019-0610, CVE-2019-0640,...

7.6CVSS7.7AI score0.34646EPSS
CVE
CVE
added 2019/08/14 9:15 p.m.89 views

CVE-2019-1196

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who s...

7.6CVSS6.3AI score0.01308EPSS
CVE
CVE
added 2017/12/12 9:29 p.m.88 views

CVE-2017-11910

ChakraCore and Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique f...

7.6CVSS7.9AI score0.76161EPSS
Total number of security vulnerabilities903