Edge@* Security Vulnerabilities and Issues — Edge@* CVE List

Lucene search

MicrosoftEdge*

423 matches found

CVE•added 2023/06/29 1:15 a.m.•1976 views

CVE-2022-29146

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

8.3CVSS8.1AI score0.00707EPSS

CVE•added 2023/06/29 1:15 a.m.•1519 views

CVE-2022-29144

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

7.5CVSS7.5AI score0.01502EPSS

CVE•added 2020/11/03 3:15 a.m.•1350 views

CVE-2020-16009

Inappropriate implementation in V8 in Google Chrome prior to 86.0.4240.183 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

8.8CVSS8.6AI score0.80718EPSS

In wild

CVE•added 2022/11/25 1:15 a.m.•1148 views

CVE-2022-4135

Heap buffer overflow in GPU in Google Chrome prior to 107.0.5304.121 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

9.6CVSS9.3AI score0.00099EPSS

In wild

CVE•added 2023/06/29 1:15 a.m.•1144 views

CVE-2022-29147

Microsoft Edge (Chromium-based) Spoofing Vulnerability

3.1CVSS4AI score0.0134EPSS

CVE•added 2017/02/26 11:59 p.m.•1037 views

CVE-2017-0037

Microsoft Internet Explorer 10 and 11 and Microsoft Edge have a type confusion issue in the Layout::MultiColumnBoxBuilder::HandleColumnBreakOnColumnSpanningElement function in mshtml.dll, which allows remote attackers to execute arbitrary code via vectors involving a crafted Cascading Style Sheets ...

8.1CVSS6.4AI score0.91698EPSS

In wild

CVE•added 2023/06/29 5:15 a.m.•929 views

CVE-2022-23264

Microsoft Edge (Chromium-based) Spoofing Vulnerability

4.7CVSS4.5AI score0.00194EPSS

CVE•added 2023/07/14 6:15 p.m.•854 views

CVE-2023-36883

Microsoft Edge for iOS Spoofing Vulnerability

4.3CVSS4.5AI score0.00204EPSS

CVE•added 2021/02/22 10:15 p.m.•816 views

CVE-2021-21157

Use after free in Web Sockets in Google Chrome on Linux prior to 88.0.4324.182 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

8.8CVSS9AI score0.01551EPSS

CVE•added 2022/12/13 7:15 p.m.•713 views

CVE-2022-44708

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

8.3CVSS8.2AI score0.0027EPSS

CVE•added 2023/06/29 2:15 a.m.•462 views

CVE-2022-26899

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

8.8CVSS7.2AI score0.00305EPSS

CVE•added 2021/06/08 11:15 p.m.•403 views

CVE-2021-33741

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

8.2CVSS7.7AI score0.0191EPSS

CVE•added 2024/08/21 9:15 p.m.•385 views

CVE-2024-7971

Type confusion in V8 in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

9.6CVSS6.8AI score0.00632EPSS

In wild

CVE•added 2023/04/28 6:15 p.m.•380 views

CVE-2023-29334

Microsoft Edge (Chromium-based) Spoofing Vulnerability

4.3CVSS4.7AI score0.00329EPSS

CVE•added 2017/05/12 2:29 p.m.•335 views

CVE-2017-0228

A remote code execution vulnerability exists in Microsoft browsers in the way JavaScript engines render when handling objects in memory, aka "Scripting Engine Memory Corruption Vulnerability." This CVE ID is unique from CVE-2017-0224, CVE-2017-0229, CVE-2017-0230, CVE-2017-0234, CVE-2017-0235, CVE-...

7.6CVSS7.8AI score0.55566EPSS

CVE•added 2021/09/03 8:15 p.m.•312 views

CVE-2021-30617

Chromium: CVE-2021-30617 Policy bypass in Blink

6.5CVSS7.2AI score0.00721EPSS

In wild

CVE•added 2017/05/12 2:29 p.m.•308 views

CVE-2017-0238

A remote code execution vulnerability exists in Microsoft browsers in the way JavaScript scripting engines handle objects in memory, aka "Scripting Engine Memory Corruption Vulnerability." This CVE ID is unique from CVE-2017-0224, CVE-2017-0228, CVE-2017-0229, CVE-2017-0230, CVE-2017-0234, CVE-2017...

7.6CVSS7.6AI score0.55566EPSS

CVE•added 2023/08/21 8:15 p.m.•306 views

CVE-2023-38158

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

3.1CVSS3.9AI score0.00871EPSS

CVE•added 2023/07/14 6:15 p.m.•270 views

CVE-2023-36887

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

7.8CVSS7.7AI score0.01177EPSS

CVE•added 2023/08/26 1:15 a.m.•266 views

CVE-2023-36741

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

8.3CVSS7.5AI score0.00902EPSS

CVE•added 2024/06/20 8:15 p.m.•252 views

CVE-2024-38082

Microsoft Edge (Chromium-based) Spoofing Vulnerability

4.7CVSS5AI score0.0025EPSS

CVE•added 2024/03/14 11:15 p.m.•250 views

CVE-2024-26246

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

3.9CVSS4.4AI score0.00293EPSS

CVE•added 2024/03/07 9:15 p.m.•248 views

CVE-2024-26167

Microsoft Edge for Android Spoofing Vulnerability

4.3CVSS5.3AI score0.00783EPSS

CVE•added 2021/09/03 8:15 p.m.•246 views

CVE-2021-30624

Chromium: CVE-2021-30624 Use after free in Autofill

8.8CVSS8.2AI score0.00373EPSS

CVE•added 2023/11/07 12:15 a.m.•239 views

CVE-2023-36409

Microsoft Edge (Chromium-based) Information Disclosure Vulnerability

6.5CVSS6AI score0.01774EPSS

CVE•added 2022/04/05 8:15 p.m.•231 views

CVE-2022-24523

Microsoft Edge (Chromium-based) Spoofing Vulnerability

4.3CVSS4.7AI score0.05015EPSS

CVE•added 2025/01/24 10:15 p.m.•229 views

CVE-2025-21262

User Interface (UI) Misrepresentation of Critical Information in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network

5.4CVSS5.2AI score0.00137EPSS

CVE•added 2021/02/09 2:15 p.m.•228 views

CVE-2021-21140

Uninitialized use in USB in Google Chrome prior to 88.0.4324.96 allowed a local attacker to potentially perform out of bounds memory access via via a USB device.

6.8CVSS7AI score0.00171EPSS

CVE•added 2023/08/21 8:15 p.m.•227 views

CVE-2023-36787

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

8.8CVSS8.5AI score0.03845EPSS

CVE•added 2023/11/03 1:15 a.m.•226 views

CVE-2023-36029

Microsoft Edge (Chromium-based) Spoofing Vulnerability

4.3CVSS5.3AI score0.0012EPSS

CVE•added 2023/08/07 6:15 p.m.•226 views

CVE-2023-38157

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

6.5CVSS6.5AI score0.00519EPSS

CVE•added 2016/11/10 6:59 a.m.•225 views

CVE-2016-7202

The scripting engines in Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," as demonstrated by the Chakra JavaSc...

7.6CVSS7.8AI score0.89399EPSS

In wild

CVE•added 2024/08/12 1:38 p.m.•222 views

CVE-2024-38218

Microsoft Edge (HTML-based) Memory Corruption Vulnerability

8.4CVSS8.3AI score0.00738EPSS

CVE•added 2017/05/12 2:29 p.m.•217 views

CVE-2017-0224

A remote code execution vulnerability exists in the way JavaScript engines render when handling objects in memory in Microsoft Edge, aka "Scripting Engine Memory Corruption Vulnerability." This CVE ID is unique from CVE-2017-0228, CVE-2017-0229, CVE-2017-0230, CVE-2017-0234, CVE-2017-0235, CVE-2017...

7.6CVSS7.3AI score0.55566EPSS

In wild

CVE•added 2022/04/05 8:15 p.m.•216 views

CVE-2022-26891

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

8.3CVSS8.1AI score0.01556EPSS

CVE•added 2024/06/20 8:15 p.m.•216 views

CVE-2024-38093

Microsoft Edge (Chromium-based) Spoofing Vulnerability

4.3CVSS4.8AI score0.00462EPSS

CVE•added 2016/11/10 6:59 a.m.•210 views

CVE-2016-7243

The Chakra JavaScript scripting engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-7200, CVE-2016-7201, CV...

7.6CVSS7.8AI score0.89399EPSS

In wild

CVE•added 2022/04/05 8:15 p.m.•209 views

CVE-2022-26900

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

8.3CVSS8.1AI score0.01556EPSS

CVE•added 2016/11/10 6:59 a.m.•206 views

CVE-2016-7240

7.6CVSS7.8AI score0.89399EPSS

In wild

CVE•added 2023/11/10 12:15 a.m.•206 views

CVE-2023-36014