Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

msrc логотип

CVE-2025-47964

Опубликовано: 26 июн. 2025
Источник: msrc
CVSS3: 5.4
EPSS Низкий

Описание

Microsoft Edge (Chromium-based) Spoofing Vulnerability

FAQ

How could an attacker exploit this vulnerability?

To exploit this vulnerability, an attacker would first have to log on to the system. An attacker could then run a specially crafted application that could exploit the vulnerability and take control of an affected system.

Additionally, an attacker could convince a local user to open a malicious file. The attacker would have to convince the user to click a link, typically by way of an enticement in an email or instant message, and then convince them to open the specially crafted file.

According to the CVSS metrics, successful exploitation of this vulnerability could lead to no loss of confidentiality (C:N), some loss of integrity (I:L) but have no effect on availability (A:N). What is the impact of this vulnerability?

The Edge browser's tab-splitting feature, which allows users to browse two tabs simultaneously, only displays the domain prefix in the address bars instead of the full URL. This behavior can lead to phishing vulnerabilities, as attackers could exploit it to make malicious websites appear legitimate by mimicking trusted domain names.

What is the version information for this release?

Microsoft Edge VersionDate ReleasedBased on Chromium Version
138.0.3351.556/26/2025138.0.7204.49/.50

Возможность эксплуатации

Publicly Disclosed

No

Exploited

No

DOS

N/A

EPSS

Процентиль: 11%
0.0004
Низкий

5.4 Medium

CVSS3

Связанные уязвимости

CVSS3: 5.4
nvd
26 дней назад

Microsoft Edge (Chromium-based) Spoofing Vulnerability

CVSS3: 5.4
github
26 дней назад

Microsoft Edge (Chromium-based) Spoofing Vulnerability

CVSS3: 5.4
fstec
около 1 месяца назад

Уязвимость браузера Microsoft Edge, связанная с ошибками представления информации пользовательским интерфейсом, позволяющая нарушителю проводить спуфинг-атаки

EPSS

Процентиль: 11%
0.0004
Низкий

5.4 Medium

CVSS3