8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
9.2 High
AI Score
Confidence
High
0.004 Low
EPSS
Percentile
72.6%
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions, gain privileges, spoof user interface.
Below is a complete list of vulnerabilities:
CVE-2022-1497 high
CVE-2022-1490 critical
CVE-2022-1477 critical
CVE-2022-1482 high
CVE-2022-1487 critical
CVE-2022-1488 warning
CVE-2022-1478 critical
CVE-2022-1485 critical
CVE-2022-1500 high
CVE-2022-1491 critical
CVE-2022-1492 high
CVE-2022-1495 warning
CVE-2022-1481 critical
CVE-2022-1483 critical
CVE-2022-1486 critical
CVE-2022-1494 high
CVE-2022-1484 critical
CVE-2022-1493 critical
CVE-2022-1501 high
CVE-2022-1479 critical
CVE-2022-1498 warning
CVE-2022-1480 warning
CVE-2022-1499 high
CVE-2022-29146 critical
CVE-2022-29147 warning
Install necessary updates from the Settings and more menu, that are listed in your About Microsoft Edge page (Microsoft Edge About page usually can be accessed from the Help and feedback option)
Microsoft Edge update settings
Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.
Denial of service. Exploitation of vulnerabilities with this impact can lead to loss of system availability or critical functional fault.
Security bypass. Exploitation of vulnerabilities with this impact can lead to performing actions restricted by current security settings.
Privilege escalation. Exploitation of vulnerabilities with this impact can lead to performing by abuser actions, which are normally disallowed for current role.
Spoof user interface. Exploitation of vulnerabilities with this impact can lead to changes in user interface to beguile user into inaccurate behavior.
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-1477
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-1478
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-1479
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-1480
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-1481
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-1482
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-1483
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-1484
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-1485
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-1486
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-1487
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-1488
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-1490
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-1491
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-1492
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-1493
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-1494
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-1495
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-1497
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-1498
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-1499
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-1500
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-1501
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29146
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29147
statistics.securelist.com/
threats.kaspersky.com/en/product/Microsoft-Edge/
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
9.2 High
AI Score
Confidence
High
0.004 Low
EPSS
Percentile
72.6%