Описание
Microsoft Edge for Android Spoofing Vulnerability
FAQ
How could an attacker exploit the vulnerability?
An attacker would have to convince a user to visit a malicious website, typically via an enticement in email or instant message, or by getting them to open an email attachment.
What is the attack vector for this vulnerability?
The attack vector is address bar spoofing. A malicious website could spoof the contents of a URL bar via a specially crafted HTML page's long URL and then use it for a phishing attack.
Возможность эксплуатации
Publicly Disclosed
Exploited
Latest Software Release
Older Software Release
EPSS
4.3 Medium
CVSS3
Связанные уязвимости
, aka 'Microsoft Edge for Android Spoofing Vulnerability'.
Уязвимость браузера Microsoft Edge for Android, связанная с недостаточной проверкой вводимых данных, позволяющая нарушителю получить доступ к защищаемой информации
EPSS
4.3 Medium
CVSS3