VYPR
Unrated severityNVD Advisory· Published Apr 8, 2019· Updated Aug 4, 2024

CVE-2019-0678

CVE-2019-0678

Description

An elevation of privilege vulnerability exists when Microsoft Edge does not properly enforce cross-domain policies, which could allow an attacker to access information from one domain and inject it into another domain.In a web-based attack scenario, an attacker could host a website that is used to attempt to exploit the vulnerability, aka 'Microsoft Edge Elevation of Privilege Vulnerability'.

Affected products

2
  • Microsoft/Edgellm-fuzzy2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: Windows Server 2016

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.