Edge Security Vulnerabilities and Issues — Edge CVE List

Lucene search

MicrosoftEdge

476 matches found

CVE•added 2023/06/29 1:15 a.m.•1518 views

CVE-2022-29144

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

7.5CVSS7.5AI score0.01502EPSS

CVE•added 2020/09/11 5:15 p.m.•1046 views

CVE-2020-0878

A remote code execution vulnerability exists in the way that Microsoft browsers access objects in memory. The vulnerability could corrupt memory in a way that could allow an attacker to execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerabili...

7.5CVSS7AI score0.23317EPSS

CVE•added 2017/06/15 1:29 a.m.•478 views

CVE-2017-8524

Microsoft browsers in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allow an allow an attacker to execute arbitrary code in the context of the current user when the Java...

7.6CVSS6.2AI score0.13839EPSS

CVE•added 2017/05/12 2:29 p.m.•326 views

CVE-2017-0228

A remote code execution vulnerability exists in Microsoft browsers in the way JavaScript engines render when handling objects in memory, aka "Scripting Engine Memory Corruption Vulnerability." This CVE ID is unique from CVE-2017-0224, CVE-2017-0229, CVE-2017-0230, CVE-2017-0234, CVE-2017-0235, CVE-...

7.6CVSS7.8AI score0.55566EPSS

CVE•added 2017/05/12 2:29 p.m.•299 views

CVE-2017-0238

A remote code execution vulnerability exists in Microsoft browsers in the way JavaScript scripting engines handle objects in memory, aka "Scripting Engine Memory Corruption Vulnerability." This CVE ID is unique from CVE-2017-0224, CVE-2017-0228, CVE-2017-0229, CVE-2017-0230, CVE-2017-0234, CVE-2017...

7.6CVSS7.6AI score0.55566EPSS

CVE•added 2023/07/14 6:15 p.m.•269 views

CVE-2023-36887

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

7.8CVSS7.7AI score0.01177EPSS

CVE•added 2020/02/11 10:15 p.m.•268 views

CVE-2020-0713

A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-0673, CVE-2020-0674, CVE-2020-0710, CVE-2020-0711, CVE-2020-0712, CVE-2020-0767.

7.6CVSS7.9AI score0.93744EPSS

CVE•added 2017/06/15 1:29 a.m.•257 views

CVE-2017-8522

Microsoft browsers in Microsoft Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allow an allow an attacker to execute arbitrary code in the context of the current user when the JavaScript engines fail to render when handling...

7.6CVSS6.2AI score0.13839EPSS

CVE•added 2020/02/11 10:15 p.m.•227 views

CVE-2020-0711

7.6CVSS7.9AI score0.93744EPSS

CVE•added 2018/08/15 5:29 p.m.•218 views

CVE-2018-8390

A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8353, CVE-2018-8355, CVE-2018-8359, CVE-2018-8...

7.6CVSS6.8AI score0.78914EPSS

CVE•added 2020/02/11 10:15 p.m.•218 views

CVE-2020-0712

7.6CVSS7.9AI score0.93744EPSS

CVE•added 2020/02/11 10:15 p.m.•216 views

CVE-2020-0710

7.6CVSS7.9AI score0.93744EPSS

CVE•added 2020/02/11 10:15 p.m.•213 views

CVE-2020-0767

7.6CVSS7.9AI score0.93744EPSS

CVE•added 2018/08/15 5:29 p.m.•211 views

CVE-2018-8372

A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka "Scripting Engine Memory Corruption Vulnerability." This affects ChakraCore, Internet Explorer 11, Microsoft Edge. This CVE ID is unique from CVE-2018-8353, CVE-2018-835...

7.6CVSS6.8AI score0.78914EPSS

CVE•added 2023/11/10 12:15 a.m.•205 views

CVE-2023-36014

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

7.3CVSS7.4AI score0.00391EPSS

CVE•added 2019/11/12 7:15 p.m.•200 views

CVE-2019-1426

A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge (HTML-based), aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-1427, CVE-2019-1428, CVE-2019-1429.

7.6CVSS7.5AI score0.83137EPSS

CVE•added 2018/08/15 5:29 p.m.•198 views

CVE-2018-8385

A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka "Scripting Engine Memory Corruption Vulnerability." This affects Internet Explorer 9, ChakraCore, Internet Explorer 11, Microsoft Edge, Internet Explorer 10. This CVE ID...

7.6CVSS6.8AI score0.78914EPSS

CVE•added 2018/08/15 5:29 p.m.•197 views

CVE-2018-8355

7.6CVSS6.8AI score0.78914EPSS

CVE•added 2016/11/10 6:59 a.m.•195 views

CVE-2016-7202

The scripting engines in Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," as demonstrated by the Chakra JavaSc...

7.6CVSS7.8AI score0.90138EPSS

CVE•added 2023/11/10 8:15 p.m.•194 views

CVE-2023-36027

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

7.1CVSS6.5AI score0.00137EPSS

CVE•added 2020/04/15 3:15 p.m.•193 views

CVE-2020-0970

7.6CVSS8AI score0.43238EPSS

CVE•added 2017/05/12 2:29 p.m.•188 views

CVE-2017-0224

A remote code execution vulnerability exists in the way JavaScript engines render when handling objects in memory in Microsoft Edge, aka "Scripting Engine Memory Corruption Vulnerability." This CVE ID is unique from CVE-2017-0228, CVE-2017-0229, CVE-2017-0230, CVE-2017-0234, CVE-2017-0235, CVE-2017...

7.6CVSS7.3AI score0.55566EPSS

CVE•added 2018/07/11 12:29 a.m.•187 views

CVE-2018-8288

7.6CVSS6.7AI score0.89009EPSS

CVE•added 2019/04/09 9:29 p.m.•182 views

CVE-2019-0739

A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0752, CVE-2019-0753, CVE-2019-0862.

7.6CVSS7.6AI score0.91963EPSS

CVE•added 2018/07/11 12:29 a.m.•180 views

CVE-2018-8291

7.6CVSS6.7AI score0.89009EPSS

CVE•added 2016/11/10 6:59 a.m.•179 views

CVE-2016-7243

The Chakra JavaScript scripting engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-7200, CVE-2016-7201, CV...

7.6CVSS7.8AI score0.90138EPSS

CVE•added 2016/11/10 6:59 a.m.•176 views

CVE-2016-7240

7.6CVSS7.8AI score0.90138EPSS

CVE•added 2019/11/12 7:15 p.m.•176 views

CVE-2019-1427

7.6CVSS7.5AI score0.83137EPSS

CVE•added 2019/11/12 7:15 p.m.•175 views

CVE-2019-1428

7.6CVSS7.5AI score0.83137EPSS

CVE•added 2016/11/10 6:59 a.m.•172 views

CVE-2016-7242

7.6CVSS7.8AI score0.90138EPSS

CVE•added 2018/07/11 12:29 a.m.•168 views

CVE-2018-8287

A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka "Scripting Engine Memory Corruption Vulnerability." This affects ChakraCore, Internet Explorer 11, Microsoft Edge, Internet Explorer 10. This CVE ID is unique from CVE-2...

7.6CVSS6.7AI score0.89009EPSS

CVE•added 2016/11/10 6:59 a.m.•164 views

CVE-2016-7203

7.6CVSS7.8AI score0.90138EPSS

CVE•added 2016/11/10 6:59 a.m.•164 views

CVE-2016-7208

7.6CVSS7.8AI score0.90138EPSS

CVE•added 2023/11/03 1:15 a.m.•159 views

CVE-2023-36034

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

7.3CVSS7.6AI score0.00635EPSS

CVE•added 2019/09/11 10:15 p.m.•154 views

CVE-2019-1237

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-1138, CVE-2019-1217, CVE-2019-1298, CVE-2019-1300.

7.6CVSS7.4AI score0.04538EPSS

CVE•added 2023/05/05 11:15 p.m.•154 views

CVE-2023-29350

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

7.5CVSS7.5AI score0.00173EPSS

CVE•added 2023/09/15 10:15 p.m.•153 views

CVE-2023-36562

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

7.1CVSS6.9AI score0.00345EPSS

CVE•added 2016/12/20 6:59 a.m.•144 views

CVE-2016-7288

The scripting engines in Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-7286, CVE-2016-7296, and CVE-2016-7297.

7.6CVSS7.6AI score0.7786EPSS

CVE•added 2019/01/08 9:29 p.m.•141 views

CVE-2019-0539

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2019-0567, CVE-2019-0568.

7.6CVSS7.4AI score0.92032EPSS

CVE•added 2020/09/11 5:15 p.m.•140 views

CVE-2020-1172

A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited the v...

7.6CVSS6.6AI score0.02046EPSS

CVE•added 2020/03/12 4:15 p.m.•136 views

CVE-2020-0768

A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-0823, CVE-2020-0825, CVE-2020-0826, CVE-2020-0827, CVE-2020-0828, CVE-2020-0829, ...

7.6CVSS7.7AI score0.28794EPSS

CVE•added 2020/03/12 4:15 p.m.•136 views

CVE-2020-0823

A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-0768, CVE-2020-0825, CVE-2020-0826, CVE-2020-0827, CVE-2020-0828, CVE-2020-0829, CVE-20...

7.6CVSS7.8AI score0.28794EPSS

CVE•added 2023/06/03 1:15 a.m.•134 views

CVE-2023-33143

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

7.5CVSS7.5AI score0.0015EPSS

CVE•added 2019/07/29 2:8 p.m.•133 views

CVE-2019-1107

7.6CVSS7.4AI score0.04538EPSS

CVE•added 2022/09/13 7:15 p.m.•131 views

CVE-2022-38012

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

7.7CVSS8.4AI score0.00537EPSS

CVE•added 2024/08/26 12:15 p.m.•127 views

CVE-2024-41879

Acrobat Reader versions 127.0.2651.105 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

7.8CVSS7.8AI score0.01364EPSS

CVE•added 2020/03/12 4:15 p.m.•126 views

CVE-2020-0829

A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-0768, CVE-2020-0823, CVE-2020-0825, CVE-2020-0826, CVE-2020-0827, CVE-2020-0828, CVE-20...

7.6CVSS7.8AI score0.28794EPSS

CVE•added 2019/05/16 7:29 p.m.•125 views

CVE-2019-0884

7.6CVSS7.3AI score0.0409EPSS

CVE•added 2020/12/10 12:15 a.m.•125 views

CVE-2020-17131

Chakra Scripting Engine Memory Corruption Vulnerability

7.5CVSS4.5AI score0.02113EPSS

CVE•added 2019/05/16 7:29 p.m.•122 views

CVE-2019-0912

7.6CVSS7.5AI score0.04538EPSS

Total number of security vulnerabilities476