CVE-2023-36559 — Vulnetix

CVE-2023-36559 PUBLISHED

Es existiert eine nicht näher beschriebene Spoofing-Schwachstelle in Microsoft Edge. Ein Angreifer kann dies ausnutzen, um Integrität und Vertraulichkeit zu beeinträchtigen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.

EPSS 0.19% · 40.2th percentile

Risk Scores

EPSS Score

0.19%

40.2th percentile

Affected Products

Vendor	Product	Versions
Gentoo	Gentoo Linux

Exploit Intelligence

CIRCL seen: CVE-2023-36559 (circl-sighting)
https://security.gentoo.org/glsa/202402-05 (circl)
Microsoft Edge (Chromium-based) Spoofing Vulnerability (circl)
https://www.microsoft.com/en-us/msrc/exploitability-index?rtc=1 (msrc)

Timeline

Oct 10, 2023 CVE Published
Oct 14, 2023 EPSS Score
Nov 3, 2023 CVE Updated
Nov 14, 2023 EPSS Score
Dec 16, 2023 EPSS Score
Jan 16, 2024 EPSS Score
Feb 16, 2024 EPSS Score
Apr 19, 2024 EPSS Score
May 20, 2024 EPSS Score
Jun 21, 2024 EPSS Score
Jul 22, 2024 EPSS Score
Aug 22, 2024 EPSS Score

References

https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-2648.json advisory
https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-2648 advisory
https://docs.microsoft.com/en-us/deployedge/microsoft-edge-relnotes-security advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36559 advisory
https://security.gentoo.org/glsa/202402-05 advisory

Open in Interactive Console →