CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
82.8%
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, gain privileges.
Below is a complete list of vulnerabilities:
CVE-2023-1531 critical
CVE-2023-1534 critical
CVE-2023-1533 critical
CVE-2023-1528 critical
CVE-2023-1530 critical
CVE-2023-1529 critical
CVE-2023-1532 critical
CVE-2023-28286 high
CVE-2023-28261 high
Install necessary updates from the Settings and more menu, that are listed in your About Microsoft Edge page (Microsoft Edge About page usually can be accessed from the Help and feedback option)
Microsoft Edge update settings
Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.
Denial of service. Exploitation of vulnerabilities with this impact can lead to loss of system availability or critical functional fault.
Security bypass. Exploitation of vulnerabilities with this impact can lead to performing actions restricted by current security settings.
Privilege escalation. Exploitation of vulnerabilities with this impact can lead to performing by abuser actions, which are normally disallowed for current role.
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-1528
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-1529
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-1530
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-1531
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-1532
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-1533
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-1534
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28261
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28286
statistics.securelist.com/
threats.kaspersky.com/en/product/Microsoft-Edge/