Skip to main content

Microsoft Edge Multiple Vulnerabilities

Release Date: 19 Apr 2022 4956 Views

RISK: Extremely High Risk

TYPE: Clients - Browsers

TYPE: Browsers

Multiple vulnerabilities were identified in Microsoft Edge. A remote user can exploit these vulnerabilities to trigger elevation of privilege, remote code execution, security restriction bypass and sensitive information disclosure on the targeted system.

 

Note:
CVE-2022-1364 is being exploited in the wild.

The vulnerability is related to the V8 JavaScript engine to process JavaScript code. The vulnerability can exploit the V8 engine to treat a JS object as an JS array and run arbitrary code on the targeted system.