Edge@- Security Vulnerabilities and Issues — Edge@- CVE List

Lucene search

MicrosoftEdge-

481 matches found

CVE•added 2021/03/11 4:15 p.m.•1159 views

CVE-2021-26411

Internet Explorer Memory Corruption Vulnerability

8.8CVSS8.2AI score0.88891EPSS

CVE•added 2020/09/11 5:15 p.m.•1044 views

CVE-2020-0878

<p>A remote code execution vulnerability exists in the way that Microsoft browsers access objects in memory. The vulnerability could corrupt memory in a way that could allow an attacker to execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerab...

7.5CVSS7AI score0.23317EPSS

CVE•added 2016/11/10 6:59 a.m.•1014 views

CVE-2016-7200

The Chakra JavaScript scripting engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-7201, CVE-2016-7202, CV...

8.8CVSS7.8AI score0.90138EPSS

CVE•added 2016/11/10 6:59 a.m.•1006 views

CVE-2016-7201

8.8CVSS7.8AI score0.90138EPSS

CVE•added 2015/02/02 7:59 p.m.•988 views

CVE-2015-0313

Use-after-free vulnerability in Adobe Flash Player before 13.0.0.269 and 14.x through 16.x before 16.0.0.305 on Windows and OS X and before 11.2.202.442 on Linux allows remote attackers to execute arbitrary code via unspecified vectors, as exploited in the wild in February 2015, a different vulnera...

10CVSS7.9AI score0.93399EPSS

CVE•added 2015/01/23 9:59 p.m.•885 views

CVE-2015-0311

Unspecified vulnerability in Adobe Flash Player through 13.0.0.262 and 14.x, 15.x, and 16.x through 16.0.0.287 on Windows and OS X and through 11.2.202.438 on Linux allows remote attackers to execute arbitrary code via unknown vectors, as exploited in the wild in January 2015.

10CVSS7.7AI score0.92871EPSS

CVE•added 2016/09/14 10:59 a.m.•878 views

CVE-2016-3351

Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to obtain sensitive information via a crafted web site, aka "Microsoft Browser Information Disclosure Vulnerability."

6.5CVSS4.8AI score0.59448EPSS

CVE•added 2017/06/15 1:29 a.m.•478 views

CVE-2017-8524

Microsoft browsers in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allow an allow an attacker to execute arbitrary code in the context of the current user when the Java...

7.6CVSS6.2AI score0.13839EPSS

CVE•added 2020/02/11 10:15 p.m.•266 views

CVE-2020-0713

A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-0673, CVE-2020-0674, CVE-2020-0710, CVE-2020-0711, CVE-2020-0712, CVE-2020-0767.

7.6CVSS7.9AI score0.93744EPSS

CVE•added 2017/06/15 1:29 a.m.•257 views

CVE-2017-8522

Microsoft browsers in Microsoft Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allow an allow an attacker to execute arbitrary code in the context of the current user when the JavaScript engines fail to render when handling...

7.6CVSS6.2AI score0.13839EPSS

CVE•added 2020/02/11 10:15 p.m.•225 views

CVE-2020-0711

7.6CVSS7.9AI score0.93744EPSS

CVE•added 2017/06/15 1:29 a.m.•223 views

CVE-2017-8529

Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, and Windows Server 2012 and R2 allow an attacker to detect specific files on the user's computer when affected Microsoft scripting engines do not properly handle objects in memory, aka "Microso...

6.5CVSS6AI score0.22313EPSS

CVE•added 2018/08/15 5:29 p.m.•216 views

CVE-2018-8390

A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8353, CVE-2018-8355, CVE-2018-8359, CVE-2018-8...

7.6CVSS6.8AI score0.78914EPSS

CVE•added 2020/02/11 10:15 p.m.•216 views

CVE-2020-0712

7.6CVSS7.9AI score0.93744EPSS

CVE•added 2020/02/11 10:15 p.m.•214 views

CVE-2020-0710

7.6CVSS7.9AI score0.93744EPSS

CVE•added 2020/02/11 10:15 p.m.•211 views

CVE-2020-0767

7.6CVSS7.9AI score0.93744EPSS

CVE•added 2018/08/15 5:29 p.m.•209 views

CVE-2018-8372

A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka "Scripting Engine Memory Corruption Vulnerability." This affects ChakraCore, Internet Explorer 11, Microsoft Edge. This CVE ID is unique from CVE-2018-8353, CVE-2018-835...

7.6CVSS6.8AI score0.78914EPSS

CVE•added 2019/11/12 7:15 p.m.•198 views

CVE-2019-1426

A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge (HTML-based), aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-1427, CVE-2019-1428, CVE-2019-1429.

7.6CVSS7.5AI score0.83137EPSS

CVE•added 2018/08/15 5:29 p.m.•196 views

CVE-2018-8385

A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka "Scripting Engine Memory Corruption Vulnerability." This affects Internet Explorer 9, ChakraCore, Internet Explorer 11, Microsoft Edge, Internet Explorer 10. This CVE ID...

7.6CVSS6.8AI score0.78914EPSS

CVE•added 2018/08/15 5:29 p.m.•195 views

CVE-2018-8355

7.6CVSS6.8AI score0.78914EPSS

CVE•added 2020/04/15 3:15 p.m.•191 views

CVE-2020-0970

7.6CVSS8AI score0.43238EPSS

CVE•added 2025/02/06 11:15 p.m.•186 views

CVE-2025-21253

Microsoft Edge for IOS and Android Spoofing Vulnerability

5.3CVSS5.2AI score0.00257EPSS

CVE•added 2018/07/11 12:29 a.m.•185 views

CVE-2018-8288

7.6CVSS6.7AI score0.89009EPSS

CVE•added 2019/04/09 9:29 p.m.•180 views

CVE-2019-0739

A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0752, CVE-2019-0753, CVE-2019-0862.

7.6CVSS7.6AI score0.91963EPSS

CVE•added 2018/07/11 12:29 a.m.•178 views

CVE-2018-8291

7.6CVSS6.7AI score0.89009EPSS

CVE•added 2019/11/12 7:15 p.m.•174 views

CVE-2019-1427

7.6CVSS7.5AI score0.83137EPSS

CVE•added 2019/11/12 7:15 p.m.•173 views

CVE-2019-1428

7.6CVSS7.5AI score0.83137EPSS

CVE•added 2018/07/11 12:29 a.m.•166 views

CVE-2018-8287

A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka "Scripting Engine Memory Corruption Vulnerability." This affects ChakraCore, Internet Explorer 11, Microsoft Edge, Internet Explorer 10. This CVE ID is unique from CVE-2...

7.6CVSS6.7AI score0.89009EPSS

CVE•added 2019/09/11 10:15 p.m.•154 views

CVE-2019-1237

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-1138, CVE-2019-1217, CVE-2019-1298, CVE-2019-1300.

7.6CVSS7.4AI score0.04538EPSS

CVE•added 2016/12/20 6:59 a.m.•144 views

CVE-2016-7288

The scripting engines in Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-7286, CVE-2016-7296, and CVE-2016-7297.

7.6CVSS7.6AI score0.7786EPSS

CVE•added 2020/09/11 5:15 p.m.•142 views

CVE-2020-1057

<p>A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited th...

9.3CVSS6.7AI score0.03106EPSS

CVE•added 2019/01/08 9:29 p.m.•141 views

CVE-2019-0539

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2019-0567, CVE-2019-0568.

7.6CVSS7.4AI score0.92032EPSS

CVE•added 2020/09/11 5:15 p.m.•140 views

CVE-2020-1172

7.6CVSS6.6AI score0.02046EPSS

CVE•added 2020/03/12 4:15 p.m.•136 views

CVE-2020-0768

A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-0823, CVE-2020-0825, CVE-2020-0826, CVE-2020-0827, CVE-2020-0828, CVE-2020-0829, ...

7.6CVSS7.7AI score0.28794EPSS

CVE•added 2020/03/12 4:15 p.m.•136 views

CVE-2020-0823

A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-0768, CVE-2020-0825, CVE-2020-0826, CVE-2020-0827, CVE-2020-0828, CVE-2020-0829, CVE-20...

7.6CVSS7.8AI score0.28794EPSS

CVE•added 2019/10/10 2:15 p.m.•135 views

CVE-2019-0608

A spoofing vulnerability exists when Microsoft Browsers does not properly parse HTTP content, aka 'Microsoft Browser Spoofing Vulnerability'. This CVE ID is unique from CVE-2019-1357.

4.3CVSS6.3AI score0.0217EPSS

CVE•added 2020/11/11 7:15 a.m.•135 views

CVE-2020-17052

Scripting Engine Memory Corruption Vulnerability

8.1CVSS8.4AI score0.05837EPSS

CVE•added 2019/07/29 2:8 p.m.•133 views

CVE-2019-1107

7.6CVSS7.4AI score0.04538EPSS

CVE•added 2020/08/17 7:15 p.m.•130 views

CVE-2020-1555

A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successf...

9.3CVSS7.9AI score0.1447EPSS

CVE•added 2020/03/12 4:15 p.m.•126 views

CVE-2020-0829

A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-0768, CVE-2020-0823, CVE-2020-0825, CVE-2020-0826, CVE-2020-0827, CVE-2020-0828, CVE-20...

7.6CVSS7.8AI score0.28794EPSS

CVE•added 2019/05/16 7:29 p.m.•125 views

CVE-2019-0884

7.6CVSS7.3AI score0.0409EPSS

CVE•added 2020/12/10 12:15 a.m.•125 views

CVE-2020-17131

Chakra Scripting Engine Memory Corruption Vulnerability

7.5CVSS4.5AI score0.02113EPSS

CVE•added 2016/09/14 10:59 a.m.•124 views

CVE-2016-3325

Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to obtain sensitive information via a crafted web site, aka "Microsoft Browser Information Disclosure Vulnerability."

3.1CVSS4.7AI score0.37457EPSS

CVE•added 2019/05/16 7:29 p.m.•122 views

CVE-2019-0912

7.6CVSS7.5AI score0.04538EPSS

CVE•added 2020/11/11 7:15 a.m.•121 views

CVE-2020-17048

Chakra Scripting Engine Memory Corruption Vulnerability

8.1CVSS5AI score0.02949EPSS

CVE•added 2020/11/11 7:15 a.m.•121 views

CVE-2020-17054

Chakra Scripting Engine Memory Corruption Vulnerability

7.6CVSS4.4AI score0.02222EPSS

CVE•added 2019/09/11 10:15 p.m.•117 views

CVE-2019-1217

7.6CVSS7.4AI score0.04538EPSS

CVE•added 2020/03/12 4:15 p.m.•117 views

CVE-2020-0826

A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-0768, CVE-2020-0823, CVE-2020-0825, CVE-2020-0827, CVE-2020-0828, CVE-2020-0829, CVE-20...

7.6CVSS7.8AI score0.28794EPSS

CVE•added 2020/03/12 4:15 p.m.•117 views

CVE-2020-0827

A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-0768, CVE-2020-0823, CVE-2020-0825, CVE-2020-0826, CVE-2020-0828, CVE-2020-0829, CVE-20...

7.6CVSS7.8AI score0.28794EPSS

CVE•added 2019/07/15 7:15 p.m.•116 views

CVE-2019-1092

7.6CVSS7.4AI score0.04538EPSS

Total number of security vulnerabilities481