Remote Code Execution Vulnerability in Microsoft Edge (Chromium-based)
CVE-2024-43566

7.5HIGH

Key Information:

Vendor: Microsoft
Status: Microsoft Edge (chromium-based)
Vendor: CVE Published:; 17 October 2024

Summary

A vulnerability has been identified in Microsoft Edge, specifically in its Chromium-based browser, allowing for remote code execution. This flaw could enable an attacker to execute arbitrary code on the affected system through crafted web content. Users are advised to apply the recommended updates to mitigate potential exploitation. Stay informed of Microsoft security updates and ensure your version of Edge is up to date to protect against this and other vulnerabilities.

Affected Version(s)

Microsoft Edge (Chromium-based) Unknown 1.0.0 < 130.0.2849.46

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE...

vendor-advisory

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Oct 17, 2024
Vulnerability Reserved
Aug 14, 2024

Collectors

NVD DatabaseMitre DatabaseMicrosoft Feed