Описание
Adobe Systems Incorporated: CVE-2023-Improper Input Validation Denial of Service Vulnerability
FAQ
What is the version information for this release?
| Microsoft Edge Channel | Microsoft Edge Version | Based on Chromium Version | Date Released |
|---|---|---|---|
| Stable | 120.0.2336.0 | 120.0.6099.216/217 | 1/11/2024 |
Why is this Adobe CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Adobe Software which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the browser?
- In your Microsoft Edge browser, click on the 3 dots (...) on the very right-hand side of the window
- Click on Help and Feedback
- Click on About Microsoft Edge
Возможность эксплуатации
Publicly Disclosed
Exploited
Latest Software Release
Older Software Release
DOS
EPSS
Связанные уязвимости
@adobe/css-tools versions 4.3.1 and earlier are affected by an Improper Input Validation vulnerability that could result in a denial of service while attempting to parse CSS.
@adobe/css-tools versions 4.3.1 and earlier are affected by an Improper Input Validation vulnerability that could result in a denial of service while attempting to parse CSS.
@adobe/css-tools Improper Input Validation and Inefficient Regular Expression Complexity
Уязвимость CSS-парсера для Node.js css-tools, связанная с недостаточной проверкой входных данных, позволяющая нарушителю вызвать отказ в обслуживании
EPSS