Severity
Medium
Analysis Summary
CVE-2023-36034 CVSS:5.3
Microsoft Edge (Chromium-based) could allow a remote attacker to execute arbitrary code on the system. By persuading a victim to open specially crafted content, an attacker could exploit this vulnerability to execute arbitrary code on the system.
CVE-2023-36029 CVSS:4.3
Microsoft Edge (Chromium-based) could allow a remote attacker to conduct spoofing attacks.
Impact
- Code Execution
- Gain Access
Indicators Of Compromise
CVE
- CVE-2023-36034
- CVE-2023-36029
Affected Vendors
Microsoft
Affected Products
- Microsoft Edge (Chromium-based) 118.0.2088.88
- Microsoft Edge (Chromium-based) 119.0.2151.44
- Microsoft Edge (Chromium-based) 118.0
- Microsoft Edge (Chromium-based) 119.0
Remediation
Use Microsoft Automatic Update to apply the appropriate patch for your system, or the Microsoft Security Update Guide to search for available patches.