CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
88.6%
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to cause denial of service, gain privileges, execute arbitrary code.
Below is a complete list of vulnerabilities:
CVE-2023-0129 critical
CVE-2023-0132 high
CVE-2023-0136 critical
CVE-2023-0133 high
CVE-2023-0140 high
CVE-2023-0131 high
CVE-2023-0138 critical
CVE-2023-0135 critical
CVE-2023-0134 critical
CVE-2023-0130 high
CVE-2023-0141 warning
CVE-2023-0139 high
CVE-2023-21796 critical
CVE-2023-21775 critical
Install necessary updates from the Settings and more menu, that are listed in your About Microsoft Edge page (Microsoft Edge About page usually can be accessed from the Help and feedback option)
Microsoft Edge update settings
Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.
Denial of service. Exploitation of vulnerabilities with this impact can lead to loss of system availability or critical functional fault.
Security bypass. Exploitation of vulnerabilities with this impact can lead to performing actions restricted by current security settings.
Privilege escalation. Exploitation of vulnerabilities with this impact can lead to performing by abuser actions, which are normally disallowed for current role.
Spoof user interface. Exploitation of vulnerabilities with this impact can lead to changes in user interface to beguile user into inaccurate behavior.
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-0129
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-0130
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-0131
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-0132
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-0133
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-0134
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-0135
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-0136
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-0138
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-0139
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-0140
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-0141
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21775
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21796
statistics.securelist.com/
threats.kaspersky.com/en/product/Microsoft-Edge/