Rewterz Threat Advisory – CVE-2023-36409 – Microsoft Edge (Chromium-based) Vulnerability

October 23, 2023

Severity

Medium

Analysis Summary

CVE-2023-36409

Microsoft Edge (Chromium-based) could allow a remote attacker to obtain sensitive information. By sending a specially crafted request, an attacker could exploit this vulnerability to obtain sensitive memory information and then use this information to launch further attacks against the affected system.

Impact

Information Disclosure

Indicators Of Compromise

CVE

CVE-2023-36409

Affected Vendors

Microsoft

Affected Products

Microsoft Edge (Chromium-based) 118.0

Remediation

Use Microsoft Automatic Update to apply the appropriate patch for your system, or the Microsoft Security Advisory to search for available patches.

Microsoft Security Advisory

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

Critical PHP RCE Vulnerability Under Mass Exploitation in New Attacks

Multiple Adobe Products Vulnerabilities

Apple WebKit Zero-Day Actively Exploited in High-Profile Cyber Attacks

Threat Insights

About Us

Our Leadership

CSR

Connect with Us