CVE-2022-24523: Microsoft Edge (Chromium-based) Spoofing Vulnerability

Overview

Severity

Medium (CVSS 4.3)

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N/E:U/RL:O/RC:C

Category

Edge - Chromium

Exploit Status

Not Exploited

Exploitation Likelihood

Less Likely

Patch Tuesday

2022-Apr

Released

2022-04-01

EPSS Score

6.64% (percentile: 91.2%)

FAQ

What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 100.0.1185.29 4/1/2022 100.0.4896.60

Affected Products (1)

Browser

• Microsoft Edge (Chromium-based)

Acknowledgments

<a href="https://hackerone.com/shadow2639">MOHIT RAJ</a>

Revision History

• 2022-04-01: Information published.