PT-2024-5976 · Microsoft · Edge

Eternalsakura13

Published

2024-08-22

Updated

2024-09-19

CVE-2024-38207

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Microsoft Edge (HTML-based) versions up to 127.0.2651.105

Description The issue is related to a memory corruption vulnerability in Microsoft Edge, based on Chromium, which can be exploited by an attacker to execute arbitrary code remotely. This is due to a buffer overflow operation.

Recommendations For versions up to 127.0.2651.105, upgrade Microsoft Edge to the latest secure version immediately.

Fix

RCE

Type Confusion

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-843CWE-787

Related Identifiers

BDU:2024-06784

CVE-2024-38207

Affected Products

Edge

PT-2024-5976 · Microsoft · Edge

CVE-2024-38207

Weakness Enumeration

Related Identifiers

Affected Products

References · 12