CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
38.5%
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, execute arbitrary code, spoof user interface, obtain sensitive information.
Below is a complete list of vulnerabilities:
CVE-2024-7001 unknown
CVE-2024-7005 unknown
CVE-2024-6988 unknown
CVE-2024-6989 unknown
CVE-2024-6997 unknown
CVE-2024-6996 unknown
CVE-2024-7000 unknown
CVE-2024-6999 unknown
CVE-2024-7004 unknown
CVE-2024-6998 unknown
CVE-2024-6991 unknown
CVE-2024-7003 unknown
CVE-2024-6994 unknown
CVE-2024-6995 unknown
CVE-2024-38103 high
CVE-2024-39379 high
Install necessary updates from the Settings and more menu, that are listed in your About Microsoft Edge page (Microsoft Edge About page usually can be accessed from the Help and feedback option)
Microsoft Edge update settings
Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.
Obtain sensitive information. Exploitation of vulnerabilities with this impact can lead to capturing by abuser information, critical for user or system.
Denial of service. Exploitation of vulnerabilities with this impact can lead to loss of system availability or critical functional fault.
Security bypass. Exploitation of vulnerabilities with this impact can lead to performing actions restricted by current security settings.
Spoof user interface. Exploitation of vulnerabilities with this impact can lead to changes in user interface to beguile user into inaccurate behavior.
msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38103
msrc.microsoft.com/update-guide/vulnerability/CVE-2024-39379
msrc.microsoft.com/update-guide/vulnerability/CVE-2024-6988
msrc.microsoft.com/update-guide/vulnerability/CVE-2024-6989
msrc.microsoft.com/update-guide/vulnerability/CVE-2024-6991
msrc.microsoft.com/update-guide/vulnerability/CVE-2024-6994
msrc.microsoft.com/update-guide/vulnerability/CVE-2024-6995
msrc.microsoft.com/update-guide/vulnerability/CVE-2024-6996
msrc.microsoft.com/update-guide/vulnerability/CVE-2024-6997
msrc.microsoft.com/update-guide/vulnerability/CVE-2024-6998
msrc.microsoft.com/update-guide/vulnerability/CVE-2024-6999
msrc.microsoft.com/update-guide/vulnerability/CVE-2024-7000
msrc.microsoft.com/update-guide/vulnerability/CVE-2024-7001
msrc.microsoft.com/update-guide/vulnerability/CVE-2024-7003
msrc.microsoft.com/update-guide/vulnerability/CVE-2024-7004
msrc.microsoft.com/update-guide/vulnerability/CVE-2024-7005
statistics.securelist.com/
threats.kaspersky.com/en/product/Microsoft-Edge/