CVE-2020-16009

Inappropriate implementation in V8 in Google Chrome prior to 86.0.4240.183 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

CVE-2021-26411

Internet Explorer Memory Corruption Vulnerability

CVE-2016-7200

The Chakra JavaScript scripting engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-7201, CVE-2016-7202, CV...

CVE-2016-7201

The Chakra JavaScript scripting engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-7200, CVE-2016-7202, CV...

CVE-2017-0037

Microsoft Internet Explorer 10 and 11 and Microsoft Edge have a type confusion issue in the Layout::MultiColumnBoxBuilder::HandleColumnBreakOnColumnSpanningElement function in mshtml.dll, which allows remote attackers to execute arbitrary code via vectors involving a crafted Cascading Style Sheets ...

CVE-2023-5217

Heap buffer overflow in vp8 encoding in libvpx in Google Chrome prior to 117.0.5938.132 and libvpx 1.13.1 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

CVE-2021-21157

Use after free in Web Sockets in Google Chrome on Linux prior to 88.0.4324.182 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

CVE-2022-44708

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2021-30624

Chromium: CVE-2021-30624 Use after free in Autofill

CVE-2021-30612

Chromium: CVE-2021-30612 Use after free in WebRTC

CVE-2021-30610

Chromium: CVE-2021-30610 Use after free in Extensions API

CVE-2021-30618

Chromium: CVE-2021-30618 Inappropriate implementation in DevTools

CVE-2021-30606

Chromium: CVE-2021-30606 Use after free in Blink

CVE-2021-30613

Chromium: CVE-2021-30613 Use after free in Base internals

CVE-2021-30623

Chromium: CVE-2021-30623 Use after free in Bookmarks

CVE-2021-30620

Chromium: CVE-2021-30620 Insufficient policy enforcement in Blink

CVE-2021-30608

Chromium: CVE-2021-30608 Use after free in Web Share

CVE-2021-30614

Chromium: CVE-2021-30614 Heap buffer overflow in TabStrip

CVE-2021-30611

Chromium: CVE-2021-30611 Use after free in WebRTC

CVE-2021-30607

Chromium: CVE-2021-30607 Use after free in Permissions

CVE-2021-30616

Chromium: CVE-2021-30616 Use after free in Media

CVE-2021-30609

Chromium: CVE-2021-30609 Use after free in Sign-In

CVE-2021-30622

Chromium: CVE-2021-30622 Use after free in WebApp Installs

CVE-2020-17052

Scripting Engine Memory Corruption Vulnerability

CVE-2020-17048

Chakra Scripting Engine Memory Corruption Vulnerability

CVE-2017-0002

Microsoft Edge allows remote attackers to bypass the Same Origin Policy via vectors involving the about:blank URL and data: URLs, aka "Microsoft Edge Elevation of Privilege Vulnerability."

CVE-2019-1140

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who s...

CVE-2021-26436

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2020-16884

A remote code execution vulnerability exists in the way that the IEToEdge Browser Helper Object (BHO) plugin on Internet Explorer handles objects in memory. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An atta...

CVE-2021-36930

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2021-38669

Microsoft Edge (Chromium-based) Tampering Vulnerability

CVE-2020-1056

An elevation of privilege vulnerability exists when Microsoft Edge does not properly enforce cross-domain policies, which could allow an attacker to access information from one domain and inject it into another domain.In a web-based attack scenario, an attacker could host a website that is used to ...

CVE-2016-3297

Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Browser Memory Corruption Vulnerability."

CVE-2017-0233

An elevation of privilege vulnerability exists in Microsoft Edge that could allow an attacker to escape from the AppContainer sandbox in the browser, aka "Microsoft Edge Elevation of Privilege Vulnerability." This CVE ID is unique from CVE-2017-0241.

CVE-2019-0649

A vulnerability exists in Microsoft Chakra JIT server, aka 'Scripting Engine Elevation of Privileged Vulnerability'.

CVE-2019-0566

An elevation of privilege vulnerability exists in Microsoft Edge Browser Broker COM object, aka "Microsoft Edge Elevation of Privilege Vulnerability." This affects Microsoft Edge.

CVE-2018-8357

An elevation of privilege vulnerability exists in Microsoft browsers allowing sandbox escape, aka "Microsoft Browser Elevation of Privilege Vulnerability." This affects Internet Explorer 11, Microsoft Edge.

CVE-2017-8503

Microsoft Edge in Microsoft Windows 10 1511, 1607, 1703, and Windows Server 2016 allows an attacker to escape from the AppContainer sandbox, aka "Microsoft Edge Elevation of Privilege Vulnerability". This CVE ID is unique from CVE-2017-8642.