CNVD-2024-07793 — Vulnetix

CNVD-2024-07793 PUBLISHED CVSS 6.5 MEDIUM

Microsoft Edge是美国微软（Microsoft）公司的一款Windows 10之后版本系统附带的Web浏览器。 Microsoft Edge (Chromium-based)存在权限提升漏洞，攻击者可利用该漏洞在系统上获得提升的权限。

Risk Scores

CVSS 3.1

6.5

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:L/E:U/RL:O/RC:C

Affected Products

Vendor	Product	Versions
Microsoft	Microsoft Edge (Chromium-based)	1.0.0
microsoft	edge_chromium	1.0.0

Exploit Intelligence

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability (circl)
CIRCL published-proof-of-concept: CVE-2024-21388 (circl-sighting)
CIRCL published-proof-of-concept: CVE-2024-21388 (circl-sighting)
CIRCL published-proof-of-concept: CVE-2024-21388 (circl-sighting)
CIRCL published-proof-of-concept: CVE-2024-21388 (circl-sighting)
CIRCL published-proof-of-concept: CVE-2024-21388 (circl-sighting)
CIRCL published-proof-of-concept: CVE-2024-21388 (circl-sighting)
CIRCL published-proof-of-concept: CVE-2024-21388 (circl-sighting)
CIRCL published-proof-of-concept: CVE-2024-21388 (circl-sighting)
CIRCL published-proof-of-concept: CVE-2024-21388 (circl-sighting)

…and 10 more exploits

Timeline

Jan 25, 2024 CVE Published
Jan 30, 2024 PoC Published
Jan 31, 2024 PoC Published
Mar 27, 2024 PoC Published
Mar 27, 2024 PoC Published
May 19, 2024 PoC Published
Jun 28, 2024 PoC Published
Sep 11, 2024 PoC Published
Sep 11, 2024 PoC Published
Sep 11, 2024 PoC Published
Sep 13, 2024 PoC Published
Sep 13, 2024 PoC Published

References

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability vendor-advisory

Open in Interactive Console →

$ Console Community · 100/wk Open console ›