CVE-2022-23261: Microsoft Edge (Chromium-based) Tampering Vulnerability

Overview

Severity

Medium (CVSS 5.3)

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:U/RL:O/RC:C

Category

Edge - Chromium

Exploit Status

Not Exploited

Exploitation Likelihood

Less Likely

Patch Tuesday

2022-Feb

Released

2022-02-03

EPSS Score

0.82% (percentile: 74.4%)

FAQ

What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 98.0.1108.43 2/3/2022 98.0.4758.80

Affected Products (1)

Browser

• Microsoft Edge (Chromium-based)

Acknowledgments

<a href="https://github.com/ylemkimon">Young Min Kim</a> with <a href="https://compsec.snu.ac.kr/">CompSec Lab at Seoul National University</a>

Revision History

• 2022-02-03: Information published.