CVE-2022-23258: Microsoft Edge for Android Spoofing Vulnerability

Overview

Severity

Medium (CVSS 4.3)

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N/E:U/RL:O/RC:C

Category

Spoofing

Exploit Status

Not Exploited

Exploitation Likelihood

Less Likely

Patch Tuesday

2022-Jan

Released

2022-01-21

Last Updated

2022-02-25

EPSS Score

1.05% (percentile: 77.6%)

FAQ

What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 97.0.1072.69 1/20/2022 97.0.4692.99

Affected Products (1)

Browser

• Microsoft Edge for Android

Acknowledgments

Anonymous, <a href="https://www.instagram.com/zaid_ghiffarii/">MUHAMMAD ZAID GHIFARI</a> with <a href="https://borneosec.or.id/">KALIMMANTAN UTARA</a>

Revision History

• 2022-01-21: Information published.
• 2022-02-25: Updated one or more CVSS scores for the affected products. This is an informational change only.