Remote Code Execution Vulnerability Affects Microsoft Edge (Chromium-based)
CVE-2024-43578

7.6HIGH

Key Information:

Vendor: Microsoft
Status: Microsoft Edge (chromium-based)
Vendor: CVE Published:; 17 October 2024

Summary

A security vulnerability has been identified in Microsoft Edge (Chromium-based) that allows remote code execution. This vulnerability could allow an attacker to execute arbitrary code on a target machine, potentially compromising the confidentiality, integrity, and availability of the system. It arises due to improper handling of objects in memory. Users are encouraged to apply the latest security updates to minimize risk and ensure their systems remain secure.

Affected Version(s)

Microsoft Edge (Chromium-based) Unknown 1.0.0 < 130.0.2849.46

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE...

vendor-advisory

CVSS V3.1

Score:

7.6

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Oct 17, 2024
Vulnerability Reserved
Aug 14, 2024

Collectors

NVD DatabaseMitre DatabaseMicrosoft Feed