VYPR

Microsoft browsers

by Microsoft

CVEs (20)

  • CVE-2019-0940HigMay 16, 2019
    risk 0.51cvss 7.5epss 0.23

    A remote code execution vulnerability exists in the way that Microsoft browsers access objects in memory, aka 'Microsoft Browser Memory Corruption Vulnerability'.

  • CVE-2020-1219HigJun 9, 2020
    risk 0.50cvss 7.5epss 0.19

    A remote code execution vulnerability exists in the way that Microsoft browsers access objects in memory, aka 'Microsoft Browser Memory Corruption Vulnerability'.

  • CVE-2019-1104HigJul 15, 2019
    risk 0.49cvss 7.5epss 0.07

    A remote code execution vulnerability exists in the way that Microsoft browsers access objects in memory, aka 'Microsoft Browser Memory Corruption Vulnerability'.

  • CVE-2019-1001HigJul 15, 2019
    risk 0.49cvss 7.5epss 0.08

    A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-1004, CVE-2019-1056, CVE-2019-1059.

  • CVE-2019-1080HigJun 12, 2019
    risk 0.49cvss 7.5epss 0.03

    A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who…

  • CVE-2019-1055HigJun 12, 2019
    risk 0.49cvss 7.5epss 0.03

    A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who…

  • CVE-2019-1038HigJun 12, 2019
    risk 0.49cvss 7.5epss 0.03

    A remote code execution vulnerability exists in the way that Microsoft browsers access objects in memory. The vulnerability could corrupt memory in a way that could allow an attacker to execute arbitrary code in the context of the current user. An attacker who successfully…

  • CVE-2019-1005HigJun 12, 2019
    risk 0.49cvss 7.5epss 0.03

    A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who…

  • CVE-2019-0988HigJun 12, 2019
    risk 0.49cvss 7.5epss 0.06

    A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who…

  • CVE-2019-0780HigApr 9, 2019
    risk 0.49cvss 7.5epss 0.08

    A remote code execution vulnerability exists in the way that Microsoft browsers access objects in memory, aka 'Microsoft Browser Memory Corruption Vulnerability'.

  • CVE-2020-0878MedKEVSep 11, 2020
    risk 0.46cvss 4.2epss 0.03

    A remote code execution vulnerability exists in the way that Microsoft browsers access objects in memory. The vulnerability could corrupt memory in a way that could allow an attacker to execute arbitrary code in the context of the current user. An attacker who successfully…

  • CVE-2019-1193MedAug 14, 2019
    risk 0.42cvss 6.4epss 0.03

    A remote code execution vulnerability exists in the way that Microsoft browsers access objects in memory. The vulnerability could corrupt memory in a way that could allow an attacker to execute arbitrary code in the context of the current user. An attacker who successfully…

  • CVE-2019-1357MedOct 10, 2019
    risk 0.28cvss 4.3epss 0.02

    A spoofing vulnerability exists when Microsoft Browsers improperly handle browser cookies, aka 'Microsoft Browser Spoofing Vulnerability'. This CVE ID is unique from CVE-2019-0608.

  • CVE-2019-0608MedOct 10, 2019
    risk 0.28cvss 4.3epss 0.02

    A spoofing vulnerability exists when Microsoft Browsers does not properly parse HTTP content, aka 'Microsoft Browser Spoofing Vulnerability'. This CVE ID is unique from CVE-2019-1357.

  • CVE-2019-1220MedSep 11, 2019
    risk 0.28cvss 4.3epss 0.04

    A security feature bypass vulnerability exists when Microsoft Browsers fail to validate the correct Security Zone of requests for specific URLs, aka 'Microsoft Browser Security Feature Bypass Vulnerability'.

  • CVE-2019-1192MedAug 14, 2019
    risk 0.28cvss 4.3epss 0.04

    A security feature bypass vulnerability exists when Microsoft browsers improperly handle requests of different origins. The vulnerability allows Microsoft browsers to bypass Same-Origin Policy (SOP) restrictions, and to allow requests that should otherwise be ignored. An…

  • CVE-2019-0920MedJun 12, 2019
    risk 0.28cvss 4.3epss 0.06

    A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who…

  • CVE-2019-0762MedApr 9, 2019
    risk 0.28cvss 4.3epss 0.04

    A security feature bypass vulnerability exists when Microsoft browsers improperly handle requests of different origins, aka 'Microsoft Browsers Security Feature Bypass Vulnerability'.

  • CVE-2019-0654MedMar 5, 2019
    risk 0.28cvss 4.3epss 0.03

    A spoofing vulnerability exists when Microsoft browsers improperly handles specific redirects, aka 'Microsoft Browser Spoofing Vulnerability'.

  • CVE-2019-1081MedJun 12, 2019
    risk 0.27cvss 4.2epss 0.02

    An information disclosure vulnerability exists when affected Microsoft browsers improperly handle objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system. To exploit the vulnerability, in a…