Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
MicrosoftEdge*

420 matches found

CVE
CVEadded 2017/03/17 12:59 a.m.82 views

CVE-2017-0069

Microsoft Edge allows remote attackers to spoof web content via a crafted web site, aka "Microsoft Edge Spoofing Vulnerability." This vulnerability is different from those described in CVE-2017-0012 and CVE-2017-0033.

4.3CVSS4.4AI score0.10334EPSS
CVE
CVEadded 2017/03/17 12:59 a.m.82 views

CVE-2017-0135

Microsoft Edge allows remote attackers to bypass the Same Origin Policy for HTML elements in other browser windows, aka "Microsoft Edge Security Feature Bypass Vulnerability." This vulnerability is different from those described in CVE-2017-0066 and CVE-2017-0140.

4.2CVSS4.3AI score0.22472EPSS
CVE
CVEadded 2017/11/15 3:29 a.m.82 views

CVE-2017-11843

ChakraCore and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 R2, and Microsoft Edge and Internet Explorer in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an at...

7.6CVSS7.5AI score
CVE
CVEadded 2018/03/14 5:29 p.m.82 views

CVE-2018-0891

ChakraCore, and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, and Internet Explorer and Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allow information disclosure, due to...

4.3CVSS5.1AI score0.59628EPSS
CVE
CVEadded 2023/07/01 12:15 a.m.82 views

CVE-2021-34506

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

6.1CVSS6.1AI score0.00898EPSS
CVE
CVEadded 2023/12/07 9:15 p.m.82 views

CVE-2023-35618

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

9.6CVSS9.2AI score0.00477EPSS
CVE
CVEadded 2017/11/15 3:29 a.m.81 views

CVE-2017-11836

ChakraCore, and Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to take control of an affected system, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vuln...

7.6CVSS7.4AI score
CVE
CVEadded 2021/09/02 11:15 p.m.81 views

CVE-2021-26439

Microsoft Edge for Android Information Disclosure Vulnerability

5.9CVSS4.7AI score0.0659EPSS
CVE
CVEadded 2023/07/01 12:15 a.m.81 views

CVE-2021-42307

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

4.3CVSS4.6AI score0.00221EPSS
CVE
CVEadded 2024/07/19 2:15 a.m.81 views

CVE-2024-38156

Microsoft Edge (Chromium-based) Spoofing Vulnerability

6.1CVSS6.1AI score0.00317EPSS
CVE
CVEadded 2016/08/09 9:59 p.m.80 views

CVE-2016-3326

Microsoft Internet Explorer 9 through 11 and Edge allow remote attackers to obtain sensitive information via a crafted web page, aka "Microsoft Browser Information Disclosure Vulnerability," a different vulnerability than CVE-2016-3327.

5.3CVSS5.1AI score0.32707EPSS
CVE
CVEadded 2017/05/12 2:29 p.m.80 views

CVE-2017-0230

A remote code execution vulnerability exists in Microsoft Edge in the way JavaScript engines render when handling objects in memory, aka "Scripting Engine Memory Corruption Vulnerability." This CVE ID is unique from CVE-2017-0224, CVE-2017-0228, CVE-2017-0229, CVE-2017-0234, CVE-2017-0235, CVE-2017...

7.6CVSS7.7AI score0.55566EPSS
CVE
CVEadded 2017/05/12 2:29 p.m.80 views

CVE-2017-0240

A remote code execution vulnerability exists in Microsoft Edge in the way affected Microsoft scripting engines render when handling objects in memory, aka "Microsoft Edge Memory Corruption Vulnerability." This CVE ID is unique from CVE-2017-0221 and CVE-2017-0227.

7.6CVSS7.5AI score0.29434EPSS
CVE
CVEadded 2017/05/12 2:29 p.m.80 views

CVE-2017-0266

A remote code execution vulnerability exists in Microsoft Edge in the way affected Microsoft scripting engines render when handling objects in memory, aka "Microsoft Edge Remote Code Execution Vulnerability."

7.6CVSS7.8AI score0.53213EPSS
CVE
CVEadded 2021/09/02 11:15 p.m.80 views

CVE-2021-38642

Microsoft Edge for iOS Spoofing Vulnerability

6.1CVSS5.1AI score0.00716EPSS
CVE
CVEadded 2025/04/04 1:15 a.m.80 views

CVE-2025-29796

User interface (ui) misrepresentation of critical information in Microsoft Edge for iOS allows an unauthorized attacker to perform spoofing over a network.

4.7CVSS6.4AI score0.00044EPSS
CVE
CVEadded 2017/11/15 3:29 a.m.79 views

CVE-2017-11833

Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to determine the origin of all webpages in the affected browser, due to how Microsoft Edge handles cross-origin requests, aka "Microsoft Edge Information Disc...

3.1CVSS4.3AI score0.13925EPSS
CVE
CVEadded 2017/11/15 3:29 a.m.79 views

CVE-2017-11837

ChakraCore and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 R2, and Microsoft Edge and Internet Explorer in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attack...

7.6CVSS7.5AI score
CVE
CVEadded 2018/03/14 5:29 p.m.79 views

CVE-2018-0874

ChakraCore and Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the Chakra scripting engine handles objects in memory, aka "Chakra Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2...

7.6CVSS7.2AI score0.85621EPSS
CVE
CVEadded 2022/01/11 9:15 p.m.79 views

CVE-2022-21929

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

2.6CVSS4.2AI score0.00635EPSS
CVE
CVEadded 2022/01/11 9:15 p.m.79 views

CVE-2022-21931

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

4.2CVSS4.6AI score0.00615EPSS
CVE
CVEadded 2025/02/06 11:15 p.m.79 views

CVE-2025-21342

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.00617EPSS
CVE
CVEadded 2016/03/09 11:59 a.m.78 views

CVE-2016-0109

Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Browser Memory Corruption Vulnerability," a different vulnerability than CVE-2016-0102, CVE-2016-0103, CVE-2016-...

7.6CVSS7.6AI score0.38033EPSS
CVE
CVEadded 2016/11/10 6:59 a.m.78 views

CVE-2016-7198

Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Browser Memory Corruption Vulnerability," a different vulnerability than CVE-2016-7195.

7.6CVSS7.8AI score0.30629EPSS
CVE
CVEadded 2017/11/15 3:29 a.m.78 views

CVE-2017-11841

ChakraCore and Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to gain the same user rights as the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vuln...

7.6CVSS7.5AI score
CVE
CVEadded 2017/07/11 9:29 p.m.78 views

CVE-2017-8592

Microsoft browsers on when Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1, Windows RT 8.1, and Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allow a security feature bypass vulnerability when they improperly handle redirect requests, ak...

6.5CVSS6.5AI score0.29443EPSS
CVE
CVEadded 2021/09/02 11:15 p.m.78 views

CVE-2021-36930

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

8.1CVSS6.2AI score0.00541EPSS
CVE
CVEadded 2022/01/11 9:15 p.m.78 views

CVE-2022-21930

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

4.2CVSS4.6AI score0.00615EPSS
CVE
CVEadded 2022/02/07 5:15 p.m.78 views

CVE-2022-23262

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

6.8CVSS6.4AI score0.00296EPSS
CVE
CVEadded 2024/10/17 11:15 p.m.78 views

CVE-2024-43580

Microsoft Edge (Chromium-based) Spoofing Vulnerability

5.4CVSS5.6AI score0.0021EPSS
CVE
CVEadded 2016/06/16 1:59 a.m.77 views

CVE-2016-3203

Microsoft Windows 8.1, Windows Server 2012 Gold and R2, Windows 10 Gold and 1511, and Microsoft Edge allow remote attackers to execute arbitrary code via a crafted PDF document, aka "Windows PDF Remote Code Execution Vulnerability."

9.3CVSS7.9AI score0.49159EPSS
CVE
CVEadded 2016/11/10 6:59 a.m.77 views

CVE-2016-7239

The RegEx class in the XSS filter in Microsoft Internet Explorer 9 through 11 and Microsoft Edge allows remote attackers to conduct cross-site scripting (XSS) attacks and obtain sensitive information via unspecified vectors, aka "Microsoft Browser Information Disclosure Vulnerability."

3.1CVSS4.7AI score0.1353EPSS
CVE
CVEadded 2017/04/12 2:59 p.m.77 views

CVE-2017-0200

A remote code execution vulnerability exists when Microsoft Edge improperly accesses objects in memory. The vulnerability could corrupt memory in such a way that enables an attacker to execute arbitrary code in the context of the current user, aka "Microsoft Edge Memory Corruption Vulnerability."

7.6CVSS7.7AI score0.29434EPSS
CVE
CVEadded 2018/03/14 5:29 p.m.77 views

CVE-2018-0873

ChakraCore and Microsoft Edge in Microsoft Windows 10 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the Chakra scripting engine handles objects in memory, aka "Chakra Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-08...

7.6CVSS7.2AI score0.85621EPSS
CVE
CVEadded 2021/09/15 12:15 p.m.77 views

CVE-2021-38669

Microsoft Edge (Chromium-based) Tampering Vulnerability

8.8CVSS6.5AI score0.00463EPSS
CVE
CVEadded 2024/10/18 1:15 a.m.77 views

CVE-2024-49023

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

5.9CVSS5.9AI score0.0058EPSS
CVE
CVEadded 2017/05/12 2:29 p.m.76 views

CVE-2017-0241

An elevation of privilege vulnerability exists when Microsoft Edge renders a domain-less page in the URL, which could allow Microsoft Edge to perform actions in the context of the Intranet Zone and access functionality that is not typically available to the browser when browsing in the context of t...

5.4CVSS6.2AI score0.15019EPSS
CVE
CVEadded 2017/10/13 1:29 p.m.76 views

CVE-2017-11811

ChakraCore and Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". T...

7.6CVSS7.8AI score0.78672EPSS
CVE
CVEadded 2017/07/11 9:29 p.m.76 views

CVE-2017-8607

Microsoft browsers in Microsoft Windows 7, Windows Server 2008 and R2, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allow an attacker to execute arbitrary code in the context of the current user when the JavaScript engine...

7.6CVSS7.5AI score0.78054EPSS
CVE
CVEadded 2016/11/10 6:59 a.m.75 views

CVE-2016-7227

The scripting engines in Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to determine the existence of local files via unspecified vectors, aka "Microsoft Browser Information Disclosure Vulnerability."

3.1CVSS4.8AI score0.16141EPSS
CVE
CVEadded 2017/03/17 12:59 a.m.75 views

CVE-2017-0065

Microsoft Edge allows remote attackers to obtain sensitive information from process memory via a crafted web site, aka "Microsoft Browser Information Disclosure Vulnerability." This vulnerability is different from those described in CVE-2017-0009, CVE-2017-0011, CVE-2017-0017, and CVE-2017-0068.

4.3CVSS4.1AI score0.28148EPSS
CVE
CVEadded 2017/05/12 2:29 p.m.75 views

CVE-2017-0227

A remote code execution vulnerability exists in Microsoft Edge in the way affected Microsoft scripting engines render when handling objects in memory, aka "Microsoft Edge Memory Corruption Vulnerability." This CVE ID is unique from CVE-2017-0221 and CVE-2017-0240.

7.6CVSS7.5AI score0.29434EPSS
CVE
CVEadded 2017/09/13 1:29 a.m.75 views

CVE-2017-8736

Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 R2, and Microsoft Edge and Internet Explorer in Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allow an attacker to obtain specific information used in the paren...

4.3CVSS4.8AI score0.16518EPSS
CVE
CVEadded 2016/11/10 6:59 a.m.74 views

CVE-2016-7199

Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to bypass the Same Origin Policy and obtain sensitive window-state information via a crafted web site, aka "Microsoft Browser Information Disclosure Vulnerability."

3.1CVSS4.8AI score0.16588EPSS
CVE
CVEadded 2017/03/17 12:59 a.m.74 views

CVE-2017-0033

Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to spoof web content via a crafted web site, aka "Microsoft Browser Spoofing Vulnerability." This vulnerability is different from those described in CVE-2017-0012 and CVE-2017-0069.

4.3CVSS4.3AI score0.10334EPSS
CVE
CVEadded 2017/03/17 12:59 a.m.74 views

CVE-2017-0066

Microsoft Edge allows remote attackers to bypass the Same Origin Policy for HTML elements in other browser windows, aka "Microsoft Edge Security Feature Bypass Vulnerability." This vulnerability is different from those described in CVE-2017-0135 and CVE-2017-0140.

4.2CVSS4.3AI score0.22472EPSS
CVE
CVEadded 2017/08/08 9:29 p.m.74 views

CVE-2017-8656

Microsoft Edge in Microsoft Windows 10 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user due to the way that Microsoft browser JavaScript engines render content when handling objects in memory, aka "Scripting Engine Memory Corruption...

7.6CVSS7.8AI score0.81883EPSS
CVE
CVEadded 2018/03/14 5:29 p.m.74 views

CVE-2018-0934

ChakraCore and Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the Chakra scripting engine handles objects in memory, aka "Chakra Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0872, CVE-2018...

7.6CVSS7.3AI score0.85621EPSS
CVE
CVEadded 2021/08/26 6:15 p.m.74 views

CVE-2021-36928

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

7.8CVSS6.1AI score0.01312EPSS
CVE
CVEadded 2024/10/17 11:15 p.m.74 views

CVE-2024-43578

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

8.3CVSS7.8AI score0.05282EPSS
Total number of security vulnerabilities420