Edge@- Security Vulnerabilities and Issues — Page 3 of Edge@- CVE List

Lucene search

MicrosoftEdge-

481 matches found

CVE•added 2017/03/17 12:59 a.m.•98 views

CVE-2017-0141

A remote code execution vulnerability exists in the way affected Microsoft scripting engines render when handling objects in memory in Microsoft browsers. These vulnerabilities could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An at...

7.6CVSS7.9AI score0.80217EPSS

CVE•added 2019/05/16 7:29 p.m.•98 views

CVE-2019-0915

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0912, CVE-2019-0913, CVE-2019-0914, CVE-2019-0916, CVE-2019-0917, ...

7.6CVSS7.5AI score0.04538EPSS

CVE•added 2019/05/16 7:29 p.m.•98 views

CVE-2019-0925

7.6CVSS7.5AI score0.04538EPSS

CVE•added 2019/08/14 9:15 p.m.•98 views

CVE-2019-1139

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who s...

7.6CVSS6.3AI score0.01308EPSS

CVE•added 2019/08/14 9:15 p.m.•98 views

CVE-2019-1140

8.8CVSS7.5AI score0.04887EPSS

CVE•added 2019/04/09 3:29 a.m.•97 views

CVE-2019-0770

A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0609, CVE-2019-0639, CVE-2019-0680, CVE-2019-0769, CVE-2019-0771, CVE-2019-0773,...

7.6CVSS7.6AI score0.10875EPSS

CVE•added 2019/05/16 7:29 p.m.•97 views

CVE-2019-0937

7.6CVSS7.5AI score0.04538EPSS

CVE•added 2016/10/14 2:59 a.m.•96 views

CVE-2016-7189

The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code via a crafted web site, aka "Scripting Engine Remote Code Execution Vulnerability."

9.3CVSS7.7AI score0.78624EPSS

CVE•added 2017/03/17 12:59 a.m.•96 views

CVE-2017-0071

7.6CVSS7.9AI score0.80217EPSS

CVE•added 2019/05/16 7:29 p.m.•96 views

CVE-2019-0922

7.6CVSS7.5AI score0.04538EPSS

CVE•added 2019/05/16 7:29 p.m.•96 views

CVE-2019-0924

7.6CVSS7.5AI score0.04538EPSS

CVE•added 2019/08/14 9:15 p.m.•96 views

CVE-2019-1197

7.6CVSS6.3AI score0.01308EPSS

CVE•added 2019/10/10 2:15 p.m.•96 views

CVE-2019-1357

A spoofing vulnerability exists when Microsoft Browsers improperly handle browser cookies, aka 'Microsoft Browser Spoofing Vulnerability'. This CVE ID is unique from CVE-2019-0608.

4.3CVSS6.3AI score0.0217EPSS

CVE•added 2020/03/12 4:15 p.m.•96 views

CVE-2020-0811

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge (HTML-based)L, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-0812.

7.6CVSS7.4AI score0.03426EPSS

CVE•added 2020/04/15 3:15 p.m.•96 views

CVE-2020-0969

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge (HTML-based), aka 'Chakra Scripting Engine Memory Corruption Vulnerability'.

7.6CVSS7.8AI score0.38317EPSS

CVE•added 2017/03/17 12:59 a.m.•95 views

CVE-2017-0134

7.6CVSS7.9AI score0.80217EPSS

CVE•added 2017/12/12 9:29 p.m.•95 views

CVE-2017-11894

ChakraCore, and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, and and Internet Explorer adn Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to gain the s...

7.6CVSS7.6AI score0.76161EPSS

CVE•added 2019/04/09 2:29 a.m.•95 views

CVE-2019-0769

7.6CVSS7.6AI score0.10875EPSS

CVE•added 2019/04/09 3:29 a.m.•95 views

CVE-2019-0771

7.6CVSS7.6AI score0.10875EPSS

CVE•added 2019/04/09 9:29 p.m.•95 views

CVE-2019-0861

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0806, CVE-2019-0810, CVE-2019-0812, CVE-2019-0829, CVE-2019-0860.

7.6CVSS7.5AI score0.44847EPSS

CVE•added 2019/08/14 9:15 p.m.•95 views

CVE-2019-1131

7.6CVSS6.3AI score0.01308EPSS

CVE•added 2020/06/09 8:15 p.m.•95 views

CVE-2020-1220

A spoofing vulnerability exists when theMicrosoft Edge (Chromium-based) in IE Mode improperly handles specific redirects, aka 'Microsoft Edge (Chromium-based) in IE Mode Spoofing Vulnerability'.

6.1CVSS6.9AI score0.00256EPSS

CVE•added 2015/09/09 12:59 a.m.•94 views

CVE-2015-2494

Microsoft Internet Explorer 7 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Memory Corruption Vulnerability," a different vulnerability than CVE-2015-2486, CVE-2015-2487, CVE-2015-2490, CV...

9.3CVSS7.4AI score0.20844EPSS

CVE•added 2019/04/08 11:29 p.m.•94 views

CVE-2019-0612

A security feature bypass vulnerability exists when Click2Play protection in Microsoft Edge improperly handles flash objects. By itself, this bypass vulnerability does not allow arbitrary code execution, aka 'Microsoft Edge Security Feature Bypass Vulnerability'.

5.3CVSS6.8AI score0.13975EPSS

CVE•added 2019/08/14 9:15 p.m.•94 views

CVE-2019-1195

7.6CVSS6.3AI score0.01308EPSS

CVE•added 2017/03/17 12:59 a.m.•93 views

CVE-2017-0032

7.6CVSS7.9AI score0.80217EPSS

CVE•added 2019/04/08 11:29 p.m.•93 views

CVE-2019-0611

7.6CVSS7.4AI score0.38317EPSS

CVE•added 2019/05/16 7:29 p.m.•93 views

CVE-2019-0916

7.6CVSS7.5AI score0.04538EPSS

CVE•added 2017/12/12 9:29 p.m.•92 views

CVE-2017-11918

ChakraCore and Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to gain the same user rights as the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is un...

7.6CVSS7.6AI score0.76161EPSS

CVE•added 2018/08/15 5:29 p.m.•92 views

CVE-2018-8383

A spoofing vulnerability exists when Microsoft Edge does not properly parse HTTP content, aka "Microsoft Edge Spoofing Vulnerability." This affects Microsoft Edge. This CVE ID is unique from CVE-2018-8388.

4.3CVSS5.6AI score0.02348EPSS

CVE•added 2019/05/16 7:29 p.m.•92 views

CVE-2019-0923

7.6CVSS7.5AI score0.04538EPSS

CVE•added 2020/07/14 11:15 p.m.•92 views

CVE-2020-1462

An information disclosure vulnerability exists when Skype for Business is accessed via Microsoft Edge (EdgeHTML-based), aka 'Skype for Business via Microsoft Edge (EdgeHTML-based) Information Disclosure Vulnerability'.

4.3CVSS5.8AI score0.12782EPSS

CVE•added 2017/12/12 9:29 p.m.•91 views

CVE-2017-11909

ChakraCore and Windows 10 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CV...

7.6CVSS7.9AI score0.76161EPSS

CVE•added 2018/01/04 2:29 p.m.•91 views

CVE-2018-0762

Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, and Internet Explorer and Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to execute arbitrary code in the ...

7.6CVSS6.7AI score0.79277EPSS

CVE•added 2018/05/09 7:29 p.m.•91 views

CVE-2018-0954

A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka "Scripting Engine Memory Corruption Vulnerability." This affects Internet Explorer 9, ChakraCore, Internet Explorer 11, Microsoft Edge, Internet Explorer 10. This CVE ID...

7.6CVSS7.7AI score0.77559EPSS

CVE•added 2019/04/09 12:29 a.m.•91 views

CVE-2019-0746

An information disclosure vulnerability exists when the scripting engine does not properly handle objects in memory in Microsoft Edge, aka 'Scripting Engine Information Disclosure Vulnerability'.

6.5CVSS6.6AI score0.22506EPSS

CVE•added 2019/05/16 7:29 p.m.•91 views

CVE-2019-0917

7.6CVSS7.5AI score0.04538EPSS

CVE•added 2020/05/21 11:15 p.m.•91 views

CVE-2020-1065

A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka 'Scripting Engine Memory Corruption Vulnerability'.

7.6CVSS7.6AI score0.04538EPSS

CVE•added 2017/12/12 9:29 p.m.•90 views

CVE-2017-11911

7.6CVSS7.9AI score0.76161EPSS

CVE•added 2017/12/12 9:29 p.m.•90 views

CVE-2017-11914

ChakraCore and Microsoft Edge in Windows 10 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to gain the same user rights as the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique f...

7.6CVSS7.6AI score0.76161EPSS

CVE•added 2019/04/09 3:29 a.m.•90 views

CVE-2019-0773

7.6CVSS7.6AI score0.10875EPSS

CVE•added 2019/04/09 9:29 p.m.•90 views

CVE-2019-0806

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0810, CVE-2019-0812, CVE-2019-0829, CVE-2019-0860, CVE-2019-0861.

7.6CVSS7.5AI score0.44847EPSS

CVE•added 2019/05/16 7:29 p.m.•90 views

CVE-2019-0933

7.6CVSS7.5AI score0.04538EPSS

CVE•added 2020/03/12 4:15 p.m.•90 views

CVE-2020-0816

A remote code execution vulnerability exists when Microsoft Edge improperly accesses objects in memory, aka 'Microsoft Edge Memory Corruption Vulnerability'.

9.3CVSS9.2AI score0.20625EPSS

CVE•added 2020/07/14 11:15 p.m.•90 views

CVE-2020-1433

An information disclosure vulnerability exists when Microsoft Edge PDF Reader improperly handles objects in memory, aka 'Microsoft Edge PDF Information Disclosure Vulnerability'.

6.5CVSS6.9AI score0.22806EPSS

CVE•added 2018/01/04 2:29 p.m.•89 views

CVE-2018-0772

7.6CVSS6.7AI score0.79277EPSS

CVE•added 2018/02/15 2:29 a.m.•89 views

CVE-2018-0840

Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, and Internet Explorer and Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the scripting e...

9.3CVSS7.3AI score0.8026EPSS

CVE•added 2019/03/06 12:0 a.m.•89 views

CVE-2019-0593

A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0590, CVE-2019-0591, CVE-2019-0605, CVE-2019-0607, CVE-2019-0610, CVE-2019-0640,...

7.6CVSS7.7AI score0.34646EPSS

CVE•added 2019/06/12 2:29 p.m.•89 views

CVE-2019-1081

An information disclosure vulnerability exists when affected Microsoft browsers improperly handle objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system.To exploit the vulnerability, in a web-based attack scenari...

6.5CVSS5.7AI score0.01125EPSS

CVE•added 2017/11/15 3:29 a.m.•88 views

CVE-2017-11873

ChakraCore and Microsoft Edge in Windows 10 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to gain the same user rights as the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerabil...

7.6CVSS7.4AI score

Total number of security vulnerabilities481