VDB
CVE-2023-36022
CVE-2023-36022
PUBLISHED
Es besteht eine Schwachstelle in Microsoft Edge, die bisher noch nicht näher beschrieben wurde. Ein entfernter, anonymer Angreifer kann diese Schwachstelle zur Ausführung von beliebigem Code ausnutzen. Eine erfolgreiche Ausnutzung erfordert eine Benutzerinteraktion.
EPSS 0.43% · 62.8th percentile
Risk Scores
EPSS Score
0.43%
62.8th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Gentoo | Gentoo Linux |
Exploit Intelligence
- CIRCL seen: CVE-2023-36022 (circl-sighting)
- CIRCL seen: CVE-2023-36022 (circl-sighting)
- https://security.gentoo.org/glsa/202402-05 (circl)
- Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability (circl)
- https://www.microsoft.com/en-us/msrc/exploitability-index?rtc=1 (msrc)
Timeline
- Nov 2, 2023 CVE Published
- Nov 3, 2023 EPSS Score
- Nov 3, 2023 PoC Published
- Dec 4, 2023 EPSS Score
- Feb 3, 2024 EPSS Score
- Feb 4, 2024 CVE Updated
- Mar 5, 2024 EPSS Score
- Apr 4, 2024 EPSS Score
- Jun 5, 2024 EPSS Score
- Jul 5, 2024 EPSS Score
- Aug 5, 2024 EPSS Score
- Sep 5, 2024 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-2820.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-2820 advisory
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36029 advisory
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36034 advisory
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36022 advisory
- https://github.com/advisories/GHSA-4742-9c9c-4wf7 advisory
- https://github.com/advisories/GHSA-7x7g-p6hc-7cp3 advisory
- https://github.com/advisories/GHSA-c254-v996-g238 advisory
- https://security.gentoo.org/glsa/202402-05 advisory