Microsoft Edge

CVEs (57)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	Published	Description
CVE-2017-11873	Microsoft Edge	Hig	0.58	7.5	0.76	Nov 15, 2017	ChakraCore and Microsoft Edge in Windows 10 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to gain the same user rights as the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory…
CVE-2017-11841	Microsoft Edge	Hig	0.58	7.5	0.80	Nov 15, 2017	ChakraCore and Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to gain the same user rights as the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine…
CVE-2017-11840	Microsoft Edge	Hig	0.58	7.5	0.80	Nov 15, 2017	ChakraCore and Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to gain the same user rights as the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine…
CVE-2017-11839	Microsoft Edge	Hig	0.58	7.5	0.80	Nov 15, 2017	Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to take control of an affected system, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption…
CVE-2017-8740	Microsoft Edge	Hig	0.58	7.5	0.78	Sep 13, 2017	Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to execute arbitrary code in the context of the current user, due to the way that the Microsoft Edge scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is…
CVE-2017-8729	Microsoft Edge	Hig	0.58	7.5	0.78	Sep 13, 2017	Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to execute arbitrary code in the context of the current user, due to the way that the Microsoft Edge scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is…
CVE-2017-8660	Microsoft Edge	Hig	0.58	8.8	0.16	Sep 13, 2017	Microsoft Edge in Microsoft Windows 10 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to the way that Microsoft browser JavaScript engines render content when handling objects in memory, aka…
CVE-2017-11764	Microsoft Microsoft Edge	Hig	0.58	7.5	0.77	Sep 13, 2017	Microsoft Edge in Microsoft Windows 10 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to the way that the Microsoft Edge scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption…
CVE-2017-8731	Microsoft Edge	Hig	0.57	7.5	0.62	Sep 13, 2017	Microsoft Edge in Microsoft Windows 10 1607 and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to the way that Microsoft Edge accesses objects in memory, aka "Microsoft Edge Memory Corruption Vulnerability". This CVE ID…
CVE-2016-0111	Microsoft Internet Explorer	Hig	0.55	7.5	0.45	Mar 9, 2016	Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Browser Memory Corruption Vulnerability," a different vulnerability than…
CVE-2017-0266	Microsoft Edge	Hig	0.52	7.5	0.37	May 12, 2017	A remote code execution vulnerability exists in Microsoft Edge in the way affected Microsoft scripting engines render when handling objects in memory, aka "Microsoft Edge Remote Code Execution Vulnerability."
CVE-2016-3269	Microsoft Edge	Hig	0.52	8.8	0.18	Jul 13, 2016	The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-3265.
CVE-2016-3260	Microsoft Internet Explorer	Hig	0.52	8.8	0.20	Jul 13, 2016	The Microsoft (1) JScript 9, (2) VBScript, and (3) Chakra JavaScript engines, as used in Microsoft Internet Explorer 11, Microsoft Edge, and other products, allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site,…
CVE-2016-3259	Microsoft Internet Explorer	Hig	0.52	8.8	0.18	Jul 13, 2016	The Microsoft (1) JScript 9, (2) VBScript, and (3) Chakra JavaScript engines, as used in Microsoft Internet Explorer 9 through 11, Microsoft Edge, and other products, allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted…
CVE-2017-11870	Microsoft Edge	Hig	0.51	7.5	0.80	Nov 15, 2017	ChakraCore and Microsoft Edge in Windows 10 1703, 1709, and Windows Server, version 1709 allows an attacker to gain the same user rights as the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This…
CVE-2017-11858	Microsoft Internet Explorer	Hig	0.51	7.5	0.24	Nov 15, 2017	ChakraCore and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, and Microsoft Edge and Internet Explorer in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server,…
CVE-2017-11846	Microsoft Internet Explorer	Hig	0.51	7.5	0.28	Nov 15, 2017	ChakraCore and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, and Microsoft Edge and Internet Explorer in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server,…
CVE-2017-11843	Microsoft Internet Explorer	Hig	0.51	7.5	0.28	Nov 15, 2017	ChakraCore and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 R2, and Microsoft Edge and Internet Explorer in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server,…
CVE-2017-11838	Microsoft Internet Explorer	Hig	0.51	7.5	0.28	Nov 15, 2017	ChakraCore and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 R2, and Microsoft Edge and Internet Explorer in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version…
CVE-2017-11837	Microsoft Internet Explorer	Hig	0.51	7.5	0.28	Nov 15, 2017	ChakraCore and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 R2, and Microsoft Edge and Internet Explorer in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version…

CVE-2017-11873HigNov 15, 2017
Microsoft
Edge
risk 0.58cvss 7.5epss 0.76
ChakraCore and Microsoft Edge in Windows 10 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to gain the same user rights as the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory…
CVE-2017-11841HigNov 15, 2017
Microsoft
Edge
risk 0.58cvss 7.5epss 0.80
ChakraCore and Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to gain the same user rights as the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine…
CVE-2017-11840HigNov 15, 2017
Microsoft
Edge
risk 0.58cvss 7.5epss 0.80
ChakraCore and Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to gain the same user rights as the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine…
CVE-2017-11839HigNov 15, 2017
Microsoft
Edge
risk 0.58cvss 7.5epss 0.80
Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to take control of an affected system, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption…
CVE-2017-8740HigSep 13, 2017
Microsoft
Edge
risk 0.58cvss 7.5epss 0.78
Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to execute arbitrary code in the context of the current user, due to the way that the Microsoft Edge scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is…
CVE-2017-8729HigSep 13, 2017
Microsoft
Edge
risk 0.58cvss 7.5epss 0.78
Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to execute arbitrary code in the context of the current user, due to the way that the Microsoft Edge scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is…
CVE-2017-8660HigSep 13, 2017
Microsoft
Edge
risk 0.58cvss 8.8epss 0.16
Microsoft Edge in Microsoft Windows 10 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to the way that Microsoft browser JavaScript engines render content when handling objects in memory, aka…
CVE-2017-11764HigSep 13, 2017
Microsoft
Microsoft Edge
risk 0.58cvss 7.5epss 0.77
Microsoft Edge in Microsoft Windows 10 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to the way that the Microsoft Edge scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption…
CVE-2017-8731HigSep 13, 2017
Microsoft
Edge
risk 0.57cvss 7.5epss 0.62
Microsoft Edge in Microsoft Windows 10 1607 and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to the way that Microsoft Edge accesses objects in memory, aka "Microsoft Edge Memory Corruption Vulnerability". This CVE ID…
CVE-2016-0111HigMar 9, 2016
Microsoft
Internet Explorer
risk 0.55cvss 7.5epss 0.45
Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Browser Memory Corruption Vulnerability," a different vulnerability than…
CVE-2017-0266HigMay 12, 2017
Microsoft
Edge
risk 0.52cvss 7.5epss 0.37
A remote code execution vulnerability exists in Microsoft Edge in the way affected Microsoft scripting engines render when handling objects in memory, aka "Microsoft Edge Remote Code Execution Vulnerability."
CVE-2016-3269HigJul 13, 2016
Microsoft
Edge
risk 0.52cvss 8.8epss 0.18
The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-3265.
CVE-2016-3260HigJul 13, 2016
Microsoft
Internet Explorer
risk 0.52cvss 8.8epss 0.20
The Microsoft (1) JScript 9, (2) VBScript, and (3) Chakra JavaScript engines, as used in Microsoft Internet Explorer 11, Microsoft Edge, and other products, allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site,…
CVE-2016-3259HigJul 13, 2016
Microsoft
Internet Explorer
risk 0.52cvss 8.8epss 0.18
The Microsoft (1) JScript 9, (2) VBScript, and (3) Chakra JavaScript engines, as used in Microsoft Internet Explorer 9 through 11, Microsoft Edge, and other products, allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted…
CVE-2017-11870HigNov 15, 2017
Microsoft
Edge
risk 0.51cvss 7.5epss 0.80
ChakraCore and Microsoft Edge in Windows 10 1703, 1709, and Windows Server, version 1709 allows an attacker to gain the same user rights as the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This…
CVE-2017-11858HigNov 15, 2017
Microsoft
Internet Explorer
risk 0.51cvss 7.5epss 0.24
ChakraCore and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, and Microsoft Edge and Internet Explorer in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server,…
CVE-2017-11846HigNov 15, 2017
Microsoft
Internet Explorer
risk 0.51cvss 7.5epss 0.28
ChakraCore and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, and Microsoft Edge and Internet Explorer in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server,…
CVE-2017-11843HigNov 15, 2017
Microsoft
Internet Explorer
risk 0.51cvss 7.5epss 0.28
ChakraCore and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 R2, and Microsoft Edge and Internet Explorer in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server,…
CVE-2017-11838HigNov 15, 2017
Microsoft
Internet Explorer
risk 0.51cvss 7.5epss 0.28
ChakraCore and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 R2, and Microsoft Edge and Internet Explorer in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version…
CVE-2017-11837HigNov 15, 2017
Microsoft
Internet Explorer
risk 0.51cvss 7.5epss 0.28
ChakraCore and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 R2, and Microsoft Edge and Internet Explorer in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version…

Page 1 of 3