Affected software includes Microsoft Edge (Stable) versions prior to '124.0.2478.51'.
"Multiple vulnerabilities have been reported in Microsoft Edge (Chromium-based) that could allow a remote attacker to cause condition of service remote code execution, sensitive information disclosure, and bypass security restrictions on the targeted system," the CERT-In advisory said. "
According to the cyber agency, these vulnerabilities exist in Microsoft Edge du to object corruption in V8 and WebAssembly, free to use in V8, downloading QUIC, improper implementation in autofill, i extensions, network and prompt and others. Are.
"A remote attacker could exploit these vulnerabilities by sending a specially crafted request to a targeted system," the agency noted.
Cert-In advised users to apply appropriate security updates as advised by the company. Earlier this month, the cyber agency warned users about several vulnerabilities in Microsoft products, including
, Developer Tools, Azure, Browser, System Center, Microsoft Dynamics, and Exchange Server. According to the advisory, these vulnerabilities could allow an attacker to obtain information disclosure, bypass security restrictions, and cause DoS conditions on targeted systems.
"Multiple vulnerabilities have been reported in Microsoft Edge (Chromium-based) that could allow a remote attacker to cause condition of service remote code execution, sensitive information disclosure, and bypass security restrictions on the targeted system," the CERT-In advisory said. "
According to the cyber agency, these vulnerabilities exist in Microsoft Edge du to object corruption in V8 and WebAssembly, free to use in V8, downloading QUIC, improper implementation in autofill, i extensions, network and prompt and others. Are.
"A remote attacker could exploit these vulnerabilities by sending a specially crafted request to a targeted system," the agency noted.
Cert-In advised users to apply appropriate security updates as advised by the company. Earlier this month, the cyber agency warned users about several vulnerabilities in Microsoft products, including
, Developer Tools, Azure, Browser, System Center, Microsoft Dynamics, and Exchange Server. According to the advisory, these vulnerabilities could allow an attacker to obtain information disclosure, bypass security restrictions, and cause DoS conditions on targeted systems.
