Windows : Microsoft Bulletins : Microsoft Edge (Chromium-Based) Multiple Vulnerabilities (Apr 2023)

Vulnerability Search		Search 324607 CVE descriptions and 146377 test descriptions, access 10,000+ cross references.
	Tests CVE All

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit.
To run a free test of this vulnerability against your system, register below.

Test ID:	1.3.6.1.4.1.25623.1.0.832042
Category:	Windows : Microsoft Bulletins
Title:	Microsoft Edge (Chromium-Based) Multiple Vulnerabilities (Apr 2023)
Summary:	This host is missing an important security; update according to Microsoft Edge (Chromium-Based) updates.
Description:	Summary: This host is missing an important security update according to Microsoft Edge (Chromium-Based) updates. Vulnerability Insight: Multiple flaws exist due to: - An use after free error in Networking APIs. - An out of bounds memory access in DOM Bindings. - Multiple heap buffer overflow errors in Visuals. - An use after free error in Frames. - An use after free error in Vulkan. Vulnerability Impact: Successful exploitation will allow an attacker to execute arbitrary code, gain access to sensitive information, bypass security restrictions, cause denial of service and may have other impacts. Affected Software/OS: Microsoft Edge (Chromium-Based) prior to version 112.0.1722.34. Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2023-24935 Microsoft Edge (Chromium-based) Spoofing Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24935 Common Vulnerability Exposure (CVE) ID: CVE-2023-1823 Debian Security Information: DSA-5386 (Google Search) https://www.debian.org/security/2023/dsa-5386 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HO3QZY4UQFP4XNF43ILMVVOABMB7KAQ5/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FG3CRADL7IL5IHK4NCHG4LAYLKHFXETX/ https://security.gentoo.org/glsa/202309-17 https://chromereleases.googleblog.com/2023/04/stable-channel-update-for-desktop.html https://crbug.com/1406900 Common Vulnerability Exposure (CVE) ID: CVE-2023-1822 https://crbug.com/1066555 Common Vulnerability Exposure (CVE) ID: CVE-2023-1821 https://crbug.com/1413618 Common Vulnerability Exposure (CVE) ID: CVE-2023-1820 https://crbug.com/1408120 Common Vulnerability Exposure (CVE) ID: CVE-2023-1819 https://crbug.com/1406588 Common Vulnerability Exposure (CVE) ID: CVE-2023-1818 https://crbug.com/1223346 Common Vulnerability Exposure (CVE) ID: CVE-2023-1817 https://crbug.com/1418061 Common Vulnerability Exposure (CVE) ID: CVE-2023-1816 https://crbug.com/1413919 Common Vulnerability Exposure (CVE) ID: CVE-2023-1815 https://crbug.com/1278708 Common Vulnerability Exposure (CVE) ID: CVE-2023-1814 https://crbug.com/1417325 Common Vulnerability Exposure (CVE) ID: CVE-2023-1813 https://crbug.com/1423258 Common Vulnerability Exposure (CVE) ID: CVE-2023-1812 https://crbug.com/1418224 Common Vulnerability Exposure (CVE) ID: CVE-2023-1811 https://crbug.com/1420510 Common Vulnerability Exposure (CVE) ID: CVE-2023-1810 https://crbug.com/1414018
Copyright	Copyright (C) 2023 Greenbone AG