CVE-2023-21719

Опубликовано: 19 янв. 2023

Источник: msrc

CVSS3: 6.5

EPSS Низкий

Описание

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

What kind of security feature could be bypassed by successfully exploiting this vulnerability?

An attacker who successfully exploited this could bypass the Edge AutoFill Protection feature

According to the CVSS metric, user interaction is required (UI:R). What interaction would the user have to do?

The user would have to click on a specially crafted URL to be compromised by the attacker.

Publicly Disclosed

Exploited

Latest Software Release

Exploitation Less Likely

Older Software Release

Exploitation Less Likely

DOS

N/A

EPSS

Процентиль: 85%

0.0239

Низкий

6.5 Medium

CVSS3

CVE-2023-21719

CVSS3: 6.5

nvd

около 3 лет назад

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

GHSA-wm68-vvjf-2rc3

CVSS3: 6.5

github

около 3 лет назад

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability.

BDU:2023-00527

CVSS3: 6.5

fstec

около 3 лет назад

Уязвимость функции Edge AutoFill Protection() браузера Microsoft Edge, позволяющая нарушителю раскрыть защищаемую информацию

EPSS

Процентиль: 85%

0.0239

Низкий

6.5 Medium

CVSS3