PT-2024-7207 · Microsoft · Edge

Eternalsakura13

Published

2024-10-17

Updated

2024-10-18

CVE-2024-49023

CVSS v2.0

6.1

Medium

Vector

AV:N/AC:H/Au:N/C:C/I:P/A:N

Name of the Vulnerable Software and Affected Versions Microsoft Edge (Chromium-based) versions prior to 129.0.2792.52

Description The issue is related to a use-after-free vulnerability in Microsoft Edge, which is based on Chromium. This vulnerability can be exploited by a remote attacker to execute arbitrary code.

Recommendations For versions prior to 129.0.2792.52, upgrade Microsoft Edge to a patched version immediately. As a temporary workaround, consider restricting access to sensitive resources until the update is applied.

Fix

RCE

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

BDU:2024-08546

CVE-2024-49023

Affected Products

Edge

PT-2024-7207 · Microsoft · Edge

CVE-2024-49023

Weakness Enumeration

Related Identifiers

Affected Products

References · 9