CVE-2019-1413

Name of the Vulnerable Software and Affected Versions Microsoft Edge (affected versions not specified)

Description The issue is related to insufficient input validation and improper handling of extension requests in Microsoft Edge. This could allow a remote attacker to bypass existing security restrictions using a specially crafted web page. An attacker who successfully exploits this vulnerability could trick the browser into installing an extension without the user's consent.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.