ID de Prueba:	1.3.6.1.4.1.25623.1.0.832068
Categoría:	Windows : Microsoft Bulletins
Título:	Microsoft Edge (Chromium-Based) Multiple Vulnerabilities (May 2023)
Resumen:	This host is missing an important security; update according to Microsoft Edge (Chromium-Based) updates.
Descripción:	Summary: This host is missing an important security update according to Microsoft Edge (Chromium-Based) updates. Vulnerability Insight: Multiple flaws exist due to: - An inappropriate implementation in PictureInPicture. - An inappropriate implementation in Prompts. - An insufficient validation of untrusted input in Extensions. - An inappropriate implementation in CORS Vulnerability Impact: Successful exploitation will allow an attacker to execute arbitrary code, gain access to sensitive information, bypass security restrictions, cause denial of service and may have other impacts on affected systems. Affected Software/OS: Microsoft Edge (Chromium-Based) prior to version 113.0.1774.35. Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 7.6 CVSS Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2023-29354 https://security.gentoo.org/glsa/202309-17 Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29354 Common Vulnerability Exposure (CVE) ID: CVE-2023-29350 Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29350 Common Vulnerability Exposure (CVE) ID: CVE-2023-2468 Debian Security Information: DSA-5398 (Google Search) https://www.debian.org/security/2023/dsa-5398 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U3V6GPGMY6ZWVWPECMQGGOKQVATXJ5BA/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Z4JI552XDFD6DYFU6WNCRBCAXWOFOOSF/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6P5RJ6UD37IPBWU3GPQNMIUFVOVCGSLY/ https://chromereleases.googleblog.com/2023/05/stable-channel-update-for-desktop.html https://crbug.com/1416380 Common Vulnerability Exposure (CVE) ID: CVE-2023-2467 https://crbug.com/1413586 Common Vulnerability Exposure (CVE) ID: CVE-2023-2466 https://crbug.com/1385714 Common Vulnerability Exposure (CVE) ID: CVE-2023-2465 https://crbug.com/1399862 Common Vulnerability Exposure (CVE) ID: CVE-2023-2464 https://crbug.com/1418549 Common Vulnerability Exposure (CVE) ID: CVE-2023-2463 https://crbug.com/1406120 Common Vulnerability Exposure (CVE) ID: CVE-2023-2462 https://crbug.com/1375133 Common Vulnerability Exposure (CVE) ID: CVE-2023-2460 https://crbug.com/1419732 Common Vulnerability Exposure (CVE) ID: CVE-2023-2459 https://crbug.com/1423304
Copyright	Copyright (C) 2023 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.