CVE-2024-21399 — Vulnetix

CVE-2024-21399 PUBLISHED

Es bestehen mehrere Schwachstellen in Microsoft Edge. Ein entfernter, anonymer Angreifer kann diese Schwachstellen zur Ausführung von beliebigem Code ausnutzen. Eine erfolgreiche Ausnutzung erfordert eine Benutzerinteraktion.

EPSS 0.32% · 54.9th percentile

Risk Scores

EPSS Score

0.32%

54.9th percentile

Affected Products

Vendor	Product	Versions
Gentoo	Gentoo Linux

Exploit Intelligence

CIRCL seen: CVE-2024-21399 (circl-sighting)
https://www.microsoft.com/en-us/msrc/exploitability-index?rtc=1 (msrc)
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability (circl)

Timeline

Feb 1, 2024 CVE Published
Feb 2, 2024 PoC Published
Feb 8, 2024 EPSS Score
Feb 18, 2024 CVE Updated
Mar 6, 2024 EPSS Score
Apr 30, 2024 EPSS Score
May 27, 2024 EPSS Score
Jun 23, 2024 EPSS Score
Aug 17, 2024 EPSS Score
Sep 13, 2024 EPSS Score
Oct 4, 2024 Coalition ESS Score
Oct 10, 2024 EPSS Score

References

https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0275.json advisory
https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0275 advisory
https://learn.microsoft.com/en-us/deployedge/microsoft-edge-relnotes-security#february-1-2024 advisory
https://security.gentoo.org/glsa/202402-23 advisory

Open in Interactive Console →