CVE-2022-24475

Опубликовано: 01 апр. 2022

Источник: msrc

CVSS3: 8.3

EPSS Низкий

Описание

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

FAQ

According to the CVSS metric, the attack complexity is high (AC:H). What does that mean for this vulnerability?

Successful exploitation of this vulnerability requires an attacker to take additional actions prior to exploitation to prepare the target environment.

What is the version information for this release?

Microsoft Edge Version	Date Released	Based on Chromium Version
100.0.1185.29	4/1/2022	100.0.4896.60

Возможность эксплуатации

Publicly Disclosed

Exploited

Latest Software Release

Exploitation Less Likely

Older Software Release

Exploitation Less Likely

EPSS

Процентиль: 81%

0.01556

Низкий

8.3 High

CVSS3

Связанные уязвимости

CVE-2022-24475

CVSS3: 8.3

nvd

почти 4 года назад

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

GHSA-rhxq-hxv2-28cf

CVSS3: 8.3

github

почти 4 года назад

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-26891, CVE-2022-26894, CVE-2022-26895, CVE-2022-26900, CVE-2022-26908, CVE-2022-26909, CVE-2022-26912.

BDU:2022-01871

CVSS3: 8.3

fstec

почти 4 года назад

Уязвимость браузера Microsoft Edge, связанная с неверным управлением генерацией кода, позволяющая нарушителю повысить свои привилегии

EPSS

Процентиль: 81%

0.01556

Низкий

8.3 High

CVSS3