CVE-2022-44708

2022-12-1319:15:14

[email protected]

web.nvd.nist.gov

676

cve-2022-44708

microsoft edge

chromium-based

elevation of privilege

vulnerability

nvd

8.3 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H

8.5 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

65.6%

JSON

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

Affected configurations

Vulners

NVD

Node

microsoftedgeRange1.0.0.0–108.0.1462.42ios

microsoftedge_chromiumRange1.0.0–108.0.1462.42

VendorProductVersionCPE
microsoftedge*cpe:2.3:a:microsoft:edge:*:*:*:*:*:ios:*:*
microsoftedge_chromium*cpe:2.3:a:microsoft:edge_chromium:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
microsoft	edge	*	cpe:2.3:a:microsoft:edge::::::ios::*
microsoft	edge_chromium	*	cpe:2.3:a:microsoft:edge_chromium::::::::

CNA Affected

[
  {
    "vendor": "Microsoft",
    "product": "Microsoft Edge for iOS",
    "cpes": [
      "cpe:2.3:a:microsoft:edge:*:*:*:*:*:iphone_os:*:*"
    ],
    "platforms": [
      "Unknown"
    ],
    "versions": [
      {
        "version": "1.0.0.0",
        "lessThan": "108.0.1462.42",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft Edge (Chromium-based)",
    "cpes": [
      "cpe:2.3:a:microsoft:edge_chromium:*:*:*:*:*:*:*:*"
    ],
    "platforms": [
      "Unknown"
    ],
    "versions": [
      {
        "version": "1.0.0",
        "lessThan": "108.0.1462.42",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  }
]