Edge Security Vulnerabilities and Issues — Edge CVE List

Lucene search

MicrosoftEdge

17 matches found

CVE•added 2016/11/10 6:59 a.m.•1031 views

CVE-2016-7200

The Chakra JavaScript scripting engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-7201, CVE-2016-7202, CV...

8.8CVSS7.8AI score0.90138EPSS

CVE•added 2016/11/10 6:59 a.m.•1024 views

CVE-2016-7201

8.8CVSS7.8AI score0.90138EPSS

CVE•added 2016/11/10 6:59 a.m.•211 views

CVE-2016-7202

The scripting engines in Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," as demonstrated by the Chakra JavaSc...

7.6CVSS7.8AI score0.90138EPSS

CVE•added 2016/11/10 6:59 a.m.•196 views

CVE-2016-7243

7.6CVSS7.8AI score0.90138EPSS

CVE•added 2016/11/10 6:59 a.m.•192 views

CVE-2016-7240

7.6CVSS7.8AI score0.90138EPSS

CVE•added 2016/11/10 6:59 a.m.•188 views

CVE-2016-7242

7.6CVSS7.8AI score0.90138EPSS

CVE•added 2016/11/10 6:59 a.m.•181 views

CVE-2016-7203

7.6CVSS7.8AI score0.90138EPSS

CVE•added 2016/11/10 6:59 a.m.•181 views

CVE-2016-7208

7.6CVSS7.8AI score0.90138EPSS

CVE•added 2016/11/10 6:59 a.m.•82 views

CVE-2016-7195

Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Browser Memory Corruption Vulnerability," a different vulnerability than CVE-2016-7198.

7.6CVSS7.8AI score0.30629EPSS

CVE•added 2016/11/10 6:59 a.m.•78 views

CVE-2016-7198

7.6CVSS7.8AI score0.30629EPSS

CVE•added 2016/11/10 6:59 a.m.•77 views

CVE-2016-7239

The RegEx class in the XSS filter in Microsoft Internet Explorer 9 through 11 and Microsoft Edge allows remote attackers to conduct cross-site scripting (XSS) attacks and obtain sensitive information via unspecified vectors, aka "Microsoft Browser Information Disclosure Vulnerability."

3.1CVSS4.7AI score0.1353EPSS

CVE•added 2016/11/10 6:59 a.m.•75 views

CVE-2016-7227

The scripting engines in Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to determine the existence of local files via unspecified vectors, aka "Microsoft Browser Information Disclosure Vulnerability."

3.1CVSS4.8AI score0.16141EPSS

CVE•added 2016/11/10 6:59 a.m.•74 views

CVE-2016-7199

Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to bypass the Same Origin Policy and obtain sensitive window-state information via a crafted web site, aka "Microsoft Browser Information Disclosure Vulnerability."

3.1CVSS4.8AI score0.16588EPSS

CVE•added 2016/11/10 6:59 a.m.•74 views

CVE-2016-7241

Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Browser Memory Corruption Vulnerability."

7.6CVSS7.6AI score0.75027EPSS

CVE•added 2016/11/10 6:59 a.m.•61 views

CVE-2016-7196

Microsoft Internet Explorer 10 and 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Browser Memory Corruption Vulnerability."

7.6CVSS7.6AI score0.54368EPSS

CVE•added 2016/11/10 6:59 a.m.•56 views

CVE-2016-7209

Microsoft Edge allows remote attackers to spoof web content via a crafted web site, aka "Microsoft Edge Spoofing Vulnerability."

5.3CVSS5.7AI score0.06822EPSS

CVE•added 2016/11/10 6:59 a.m.•46 views

CVE-2016-7204

Microsoft Edge allows remote attackers to access arbitrary "My Documents" files via a crafted web site, aka "Microsoft Edge Information Disclosure Vulnerability."

3.1CVSS5AI score0.18602EPSS