← Back

CVE-2024-29986

nvd nist
Published: Apr 18, 2024Modified: Jan 17, 2025

JSON object

Loading...
5.4
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
Exploitability: 2.8 / Impact: 2.5
Source: secure@microsoft.com (Secondary)

Description

Microsoft Edge for Android (Chromium-based) Information Disclosure Vulnerability

Affected (1)

Microsoft
1 product
Edge Chromium
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Edge Chromium
Before 124.0.2478.51
Running on/withPlatform Versions
Google
Android
All versions

Related CWEs

CWE-359
Exposure of Private Personal Information to an Unauthorized Actor
The product does not properly prevent a person's private, personal information from being accessed by actors who either (1) are not explicitly authorized to access the information or (2) do not have the implicit consent of the person about whom the information is collected.

References (2)

Source: secure@microsoft.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.