Описание
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
FAQ
What is the version information for this release?
| Microsoft Edge Channel | Microsoft Edge Version | Based on Chromium Version | Date Released |
|---|---|---|---|
| Stable | 115.0.1901.183 | 115.0.5790.98/99 | 7/21/2023 |
| Extended Stable | 114.0.1901.183 | 114.0.5735.243 | 7/21/2023 |
According to the CVSS metric, the attack complexity is high (AC:H). What does that mean for this vulnerability?
Successful exploitation of this vulnerability requires an attacker to take additional actions prior to exploitation to prepare the target environment.
According to the CVSS metric, successful exploitation of this vulnerability could lead to some loss of integrity (I:L)? What does that mean for this vulnerability?
The attacker is only able to modify limited content of the affected API.
According to the CVSS metric, successful exploitation of this vulnerability could lead to no loss of availability (A:N)? What does that mean for this vulnerability?
An attacker cannot impact the availability of the browser.
Возможность эксплуатации
Publicly Disclosed
Exploited
Latest Software Release
Older Software Release
DOS
EPSS
6.5 Medium
CVSS3
Связанные уязвимости
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
Уязвимость браузера Microsoft Edge, связанная с недостаточной проверкой входных данных, позволяющая нарушителю повысить свои привилегии
EPSS
6.5 Medium
CVSS3