Test ID:	1.3.6.1.4.1.25623.1.0.832775
Category:	Windows : Microsoft Bulletins
Title:	Microsoft Edge (Chromium-Based) Multiple Vulnerabilities (Jan 2024)
Summary:	This host is missing an important security update according to; Microsoft Edge (Chromium-Based) updates.
Description:	Summary: This host is missing an important security update according to Microsoft Edge (Chromium-Based) updates. Vulnerability Insight: Multiple flaws exist due to: - An heap buffer overflow issue in ANGLE. - An use after free error in WebGPU, WebAudio and ANGLE. Vulnerability Impact: Successful exploitation will allow an attacker to execute arbitrary code and conduct heap buffer overflow attacks on an affected system. Affected Software/OS: Microsoft Edge (Chromium-Based) prior to version 120.0.2210.121. Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2024-0225 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/D6C2HN4T2S6GYNTAUXLH45LQZHK7QPHP/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AYONA2XSNFMXLAW4IHLFI5UVV3QRNG5K/ https://security.gentoo.org/glsa/202401-34 https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop.html https://crbug.com/1506923 Common Vulnerability Exposure (CVE) ID: CVE-2024-0224 https://crbug.com/1505086 Common Vulnerability Exposure (CVE) ID: CVE-2024-0223 https://crbug.com/1505009 Common Vulnerability Exposure (CVE) ID: CVE-2024-0222 https://crbug.com/1501798
Copyright	Copyright (C) 2024 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.