Severity
Medium
Analysis Summary
CVE-2024-26192 CVSS:8.2
Microsoft Edge (Chromium-based) could allow a remote attacker to obtain sensitive information. By persuading a victim to visit a specially crafted Web site, an attacker could exploit this vulnerability to escape the browser sandbox, obtain sensitive information, and use this information to launch further attacks against the affected system.
CVE-2024-26188 CVSS:4.3
Microsoft Edge for Android could allow a remote attacker to conduct spoofing attacks.
Impact
- Gain Access
- Information Disclosure
Indicators Of Compromise
CVE
- CVE-2024-26192
- CVE-2024-26188
Affected Vendors
Microsoft
Affected Products
- Microsoft Edge (Chromium-based) 122.0.2365.52
- Microsoft Edge for Android 122.0.2365.52
Remediation
Use Microsoft Automatic Update to apply the appropriate patch for your system, or the Microsoft Security Update Guide to search for available patches.