74 matches found
CVE-2016-3351
Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to obtain sensitive information via a crafted web site, aka "Microsoft Browser Information Disclosure Vulnerability."
CVE-2021-30617
Chromium: CVE-2021-30617 Policy bypass in Blink
CVE-2023-36409
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
CVE-2021-21140
Uninitialized use in USB in Google Chrome prior to 88.0.4324.96 allowed a local attacker to potentially perform out of bounds memory access via via a USB device.
CVE-2023-38157
Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability
CVE-2017-8529
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, and Windows Server 2012 and R2 allow an attacker to detect specific files on the user's computer when affected Microsoft scripting engines do not properly handle objects in memory, aka "Microso...
CVE-2021-21141
Insufficient policy enforcement in File System API in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to bypass file extension policy via a crafted HTML page.
CVE-2023-36022
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
CVE-2023-38187
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
CVE-2023-36008
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
CVE-2021-30621
Chromium: CVE-2021-30621 UI Spoofing in Autofill
CVE-2023-28286
Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability
CVE-2021-30615
Chromium: CVE-2021-30615 Cross-origin data leak in Navigation
CVE-2021-30619
Chromium: CVE-2021-30619 UI Spoofing in Autofill
CVE-2023-21719
Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability
CVE-2023-29345
Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability
CVE-2024-21388
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
CVE-2023-36727
Microsoft Edge (Chromium-based) Spoofing Vulnerability
CVE-2024-20675
Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability
CVE-2024-38208
Microsoft Edge for Android Spoofing Vulnerability
CVE-2024-29987
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
CVE-2023-24935
Microsoft Edge (Chromium-based) Spoofing Vulnerability
CVE-2025-29806
No cwe for this issue in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.
CVE-2023-33145
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
CVE-2025-47963
No cwe for this issue in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.
CVE-2024-38222
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
CVE-2025-21185
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
CVE-2020-1220
A spoofing vulnerability exists when theMicrosoft Edge (Chromium-based) in IE Mode improperly handles specific redirects, aka 'Microsoft Edge (Chromium-based) in IE Mode Spoofing Vulnerability'.
CVE-2024-38207
Microsoft Edge (HTML-based) Memory Corruption Vulnerability
CVE-2025-29825
User interface (ui) misrepresentation of critical information in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.
CVE-2019-0746
An information disclosure vulnerability exists when the scripting engine does not properly handle objects in memory in Microsoft Edge, aka 'Scripting Engine Information Disclosure Vulnerability'.
CVE-2020-1433
An information disclosure vulnerability exists when Microsoft Edge PDF Reader improperly handles objects in memory, aka 'Microsoft Edge PDF Information Disclosure Vulnerability'.
CVE-2019-1081
An information disclosure vulnerability exists when affected Microsoft browsers improperly handle objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system.To exploit the vulnerability, in a web-based attack scenari...
CVE-2019-0658
An information disclosure vulnerability exists when the scripting engine does not properly handle objects in memory in Microsoft Edge, aka 'Scripting Engine Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0648.
CVE-2019-0764
A tampering vulnerability exists when Microsoft browsers do not properly validate input under specific conditions, aka 'Microsoft Browsers Tampering Vulnerability'.
CVE-2023-36888
Microsoft Edge for Android (Chromium-based) Tampering Vulnerability
CVE-2022-21954
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
CVE-2021-34506
Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability
CVE-2024-38156
Microsoft Edge (Chromium-based) Spoofing Vulnerability
CVE-2016-0158
Microsoft Edge allows remote attackers to bypass the Same Origin Policy via unspecified vectors, aka "Microsoft Edge Elevation of Privilege Vulnerability," a different vulnerability than CVE-2016-0161.
CVE-2021-38642
Microsoft Edge for iOS Spoofing Vulnerability
CVE-2019-1356
An information disclosure vulnerability exists when Microsoft Edge based on Edge HTML improperly handles objects in memory, aka 'Microsoft Edge based on Edge HTML Information Disclosure Vulnerability'.
CVE-2017-8592
Microsoft browsers on when Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1, Windows RT 8.1, and Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allow a security feature bypass vulnerability when they improperly handle redirect requests, ak...
CVE-2020-17153
Microsoft Edge for Android Spoofing Vulnerability
CVE-2022-23262
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
CVE-2016-3370
The PDF library in Microsoft Edge, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold, 1511, and 1607 allows remote attackers to obtain sensitive information via a crafted web site, aka "PDF Library Information Disclosure Vulnerability," a different vulnerability than...
CVE-2019-0833
An information disclosure vulnerability exists when Microsoft Edge improperly handles objects in memory, aka 'Microsoft Edge Information Disclosure Vulnerability'.
CVE-2016-3374
The PDF library in Microsoft Edge, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold, 1511, and 1607 allows remote attackers to obtain sensitive information via a crafted web site, aka "PDF Library Information Disclosure Vulnerability," a different vulnerability than...
CVE-2017-0017
The RegEx class in the XSS filter in Microsoft Edge allows remote attackers to conduct cross-site scripting (XSS) attacks and obtain sensitive information via unspecified vectors, aka "Microsoft Edge Information Disclosure Vulnerability." This vulnerability is different from those described in CVE-...
CVE-2017-11863
Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to trick a user into loading a page containing malicious content, due to how the Edge Content Security Policy (CSP) validates documents, aka "Microsoft Edge S...