ID de Prueba:	1.3.6.1.4.1.25623.1.0.832092
Categoría:	Windows : Microsoft Bulletins
Título:	Microsoft Edge (Chromium-Based) Multiple Vulnerabilities-01 (Jun 2023)
Resumen:	This host is missing an important security; update according to Microsoft Edge (Chromium-Based) updates.
Descripción:	Summary: This host is missing an important security update according to Microsoft Edge (Chromium-Based) updates. Vulnerability Insight: Multiple flaws exist due to: - An inappropriate implementation in Downloads. - An inappropriate implementation in Extensions API. - An insufficient data validation in Installer. - An inappropriate implementation in Picture In Picture. Vulnerability Impact: Successful exploitation will allow an attacker to execute arbitrary code, gain access to sensitive information, bypass security restrictions, cause denial of service and may have other impacts on affected system. Affected Software/OS: Microsoft Edge (Chromium-Based) prior to version 114.0.1823.37. Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2023-2941 Debian Security Information: DSA-5418 (Google Search) https://www.debian.org/security/2023/dsa-5418 https://security.gentoo.org/glsa/202311-11 https://security.gentoo.org/glsa/202401-34 https://chromereleases.googleblog.com/2023/05/stable-channel-update-for-desktop_30.html https://crbug.com/1430269 Common Vulnerability Exposure (CVE) ID: CVE-2023-2940 https://crbug.com/1426807 Common Vulnerability Exposure (CVE) ID: CVE-2023-2939 https://crbug.com/1427431 Common Vulnerability Exposure (CVE) ID: CVE-2023-2938 https://crbug.com/1416350 Common Vulnerability Exposure (CVE) ID: CVE-2023-2937 https://crbug.com/1413813 Common Vulnerability Exposure (CVE) ID: CVE-2023-2936 http://packetstormsecurity.com/files/173197/Chrome-V8-Type-Confusion.html https://crbug.com/1443452 Common Vulnerability Exposure (CVE) ID: CVE-2023-2934 http://packetstormsecurity.com/files/173259/Chrome-Mojo-Message-Validation-Bypass.html https://crbug.com/1429720 Common Vulnerability Exposure (CVE) ID: CVE-2023-2933 https://crbug.com/1445426 Common Vulnerability Exposure (CVE) ID: CVE-2023-2932 https://crbug.com/1444581 Common Vulnerability Exposure (CVE) ID: CVE-2023-2931 https://crbug.com/1444238 Common Vulnerability Exposure (CVE) ID: CVE-2023-2930 https://crbug.com/1443401 Common Vulnerability Exposure (CVE) ID: CVE-2023-2929 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/B6SAST6CB5KKCQKH75ER2UQ3ICYPHCIZ/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2LE64KGGOISKPKMYROSDT4K6QFVDIRF6/ https://crbug.com/1410191 Common Vulnerability Exposure (CVE) ID: CVE-2023-33143 https://security.gentoo.org/glsa/202402-05 Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33143 Common Vulnerability Exposure (CVE) ID: CVE-2023-29345 Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29345
Copyright	Copyright (C) 2023 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.