Microsoft Edge Chromium-based Remote Code Execution Vulnerability
CVE-2024-38210

7.8HIGH

Key Information:

Vendor
Microsoft
Status
Microsoft Edge (chromium-based)
Vendor
CVE Published:
22 August 2024

Badges

πŸ“° News Worthy

Summary

A remote code execution vulnerability exists in Microsoft Edge (Chromium-based) that allows an attacker to execute arbitrary code on a user's system. This may occur when Edge improperly handles objects in memory. Successful exploitation of this vulnerability enables attackers to install malicious software or gain unauthorized access to sensitive data. Users are advised to apply the necessary patches and updates to mitigate potential risks associated with this vulnerability. Further details can be found in the official vendor advisory.

Affected Version(s)

Microsoft Edge (Chromium-based) Unknown 1.0.0 < 128.0.2739.42

News Articles

favicon imageCyber Security News

Microsoft Edge RCE Vulnerability Let Attackers Take Control of the System Remotely

A critical remote code execution (RCE) vulnerability in Microsoft Edge has been discovered. It could allow attackers to take control of affected systems by executing arbitrary code remotely.

4 months ago

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE...
vendor-advisory

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • πŸ“°

    First article discovered by Cyber Security News

  • Vulnerability published

  • Vulnerability Reserved

Collectors

NVD DatabaseMitre DatabaseMicrosoft Feed1 News Article(s)
.