Skip to main content

Microsoft Edge Multiple Vulnerabilities

Release Date: 28 Sep 2021 4045 Views

RISK: Extremely High Risk

TYPE: Clients - Browsers

TYPE: Browsers

Multiple vulnerabilities were identified in Microsoft Edge, a remote attacker could exploit some of these vulnerabilities to trigger remote code execution, sensitive information disclosure and security restriction bypass on the targeted system.

 

Note:
CVE-2021-37973 is being exploited in the wild.


Impact

  • Remote Code Execution
  • Information Disclosure
  • Security Restriction Bypass

System / Technologies affected

  • Microsoft Edge prior to 94.0.992.31

Solutions

Before installation of the software, please visit the software vendor web-site for more details.

    The vendor has issued a fix:

  • Update to version 94.0.992.31

Vulnerability Identifier


Source


Related Link

https://chromereleases.googleblog.com/2021

 

https://msrc.microsoft.com/update-guide/en-us

 

https://www.auscert.org.au/bulletins/ASB-2021.0187