Edge Chromium
by Microsoft
CVEs (223)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2021-38642 | 0.00 | — | 0.01 | Sep 2, 2021 | Microsoft Edge for iOS Spoofing Vulnerability | |||
| CVE-2021-38641 | 0.00 | — | 0.01 | Sep 2, 2021 | Microsoft Edge for Android Spoofing Vulnerability | |||
| CVE-2021-36930 | 0.00 | — | 0.01 | Sep 2, 2021 | Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability | |||
| CVE-2021-26436 | 0.00 | — | 0.02 | Sep 2, 2021 | Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability | |||
| CVE-2021-36931 | 0.00 | — | 0.01 | Aug 26, 2021 | Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability | |||
| CVE-2021-36929 | 0.00 | — | 0.03 | Aug 26, 2021 | Microsoft Edge (Chromium-based) Information Disclosure Vulnerability | |||
| CVE-2021-36928 | 0.00 | — | 0.01 | Aug 26, 2021 | Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability | |||
| CVE-2021-33741 | 0.00 | — | 0.03 | Jun 8, 2021 | Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability | |||
| CVE-2021-24113 | 0.00 | — | 0.01 | Feb 25, 2021 | Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability | |||
| CVE-2020-17131 | 0.00 | — | 0.02 | Dec 9, 2020 | Chakra Scripting Engine Memory Corruption Vulnerability | |||
| CVE-2020-16884 | 0.00 | — | 0.02 | Sep 11, 2020 | A remote code execution vulnerability exists in the way that the IEToEdge Browser Helper Object (BHO) plugin on Internet Explorer handles objects in memory. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of… | |||
| CVE-2020-1195 | 0.00 | — | 0.03 | May 21, 2020 | An elevation of privilege vulnerability exists in Microsoft Edge (Chromium-based) when the Feedback extension improperly validates input, aka 'Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability'. | |||
| CVE-2019-1051 | 0.00 | — | 0.04 | Jun 12, 2019 | A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current… | |||
| CVE-2019-1054 | 0.00 | — | 0.02 | Jun 12, 2019 | A security feature bypass vulnerability exists in Edge that allows for bypassing Mark of the Web Tagging (MOTW). Failing to set the MOTW means that a large number of Microsoft security technologies are bypassed. In a web-based attack scenario, an attacker could host a malicious… | |||
| CVE-2019-1081 | 0.00 | — | 0.02 | Jun 12, 2019 | An information disclosure vulnerability exists when affected Microsoft browsers improperly handle objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system. To exploit the vulnerability, in a… | |||
| CVE-2019-1052 | 0.00 | — | 0.02 | Jun 12, 2019 | A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current… | |||
| CVE-2019-1024 | 0.00 | — | 0.02 | Jun 12, 2019 | A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current… | |||
| CVE-2019-1002 | 0.00 | — | 0.02 | Jun 12, 2019 | A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current… | |||
| CVE-2019-0991 | 0.00 | — | 0.02 | Jun 12, 2019 | A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current… | |||
| CVE-2019-0992 | 0.00 | — | 0.03 | Jun 12, 2019 | A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current… |
- CVE-2021-38642Sep 2, 2021risk 0.00cvss —epss 0.01
Microsoft Edge for iOS Spoofing Vulnerability
- CVE-2021-38641Sep 2, 2021risk 0.00cvss —epss 0.01
Microsoft Edge for Android Spoofing Vulnerability
- CVE-2021-36930Sep 2, 2021risk 0.00cvss —epss 0.01
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
- CVE-2021-26436Sep 2, 2021risk 0.00cvss —epss 0.02
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
- CVE-2021-36931Aug 26, 2021risk 0.00cvss —epss 0.01
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
- CVE-2021-36929Aug 26, 2021risk 0.00cvss —epss 0.03
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
- CVE-2021-36928Aug 26, 2021risk 0.00cvss —epss 0.01
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
- CVE-2021-33741Jun 8, 2021risk 0.00cvss —epss 0.03
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
- CVE-2021-24113Feb 25, 2021risk 0.00cvss —epss 0.01
Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability
- CVE-2020-17131Dec 9, 2020risk 0.00cvss —epss 0.02
Chakra Scripting Engine Memory Corruption Vulnerability
- CVE-2020-16884Sep 11, 2020risk 0.00cvss —epss 0.02
A remote code execution vulnerability exists in the way that the IEToEdge Browser Helper Object (BHO) plugin on Internet Explorer handles objects in memory. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of…
- CVE-2020-1195May 21, 2020risk 0.00cvss —epss 0.03
An elevation of privilege vulnerability exists in Microsoft Edge (Chromium-based) when the Feedback extension improperly validates input, aka 'Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability'.
- CVE-2019-1051Jun 12, 2019risk 0.00cvss —epss 0.04
A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current…
- CVE-2019-1054Jun 12, 2019risk 0.00cvss —epss 0.02
A security feature bypass vulnerability exists in Edge that allows for bypassing Mark of the Web Tagging (MOTW). Failing to set the MOTW means that a large number of Microsoft security technologies are bypassed. In a web-based attack scenario, an attacker could host a malicious…
- CVE-2019-1081Jun 12, 2019risk 0.00cvss —epss 0.02
An information disclosure vulnerability exists when affected Microsoft browsers improperly handle objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system. To exploit the vulnerability, in a…
- CVE-2019-1052Jun 12, 2019risk 0.00cvss —epss 0.02
A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current…
- CVE-2019-1024Jun 12, 2019risk 0.00cvss —epss 0.02
A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current…
- CVE-2019-1002Jun 12, 2019risk 0.00cvss —epss 0.02
A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current…
- CVE-2019-0991Jun 12, 2019risk 0.00cvss —epss 0.02
A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current…
- CVE-2019-0992Jun 12, 2019risk 0.00cvss —epss 0.03
A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge (HTML-based). The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current…
Page 11 of 12