Edge

edge

Vendor: Microsoft • 757 CVEs

CVEs (757)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2016-7195 1Microsoft 2Edge Internet Explorer May 6, 2026 Nov 10, 2016 N/A· v4 7.5 HIGH· v3 7.6 HIGH· v2 Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Browser Memory Corrupti...Show more Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Browser Memory Corruption Vulnerability," a different vulnerability than CVE-2016-7198.Show less
CVE-2016-7194 1Microsoft 1Edge May 6, 2026 Oct 14, 2016 N/A· v4 7.5 HIGH· v3 7.6 HIGH· v2 The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerabil...Show more The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-3386, CVE-2016-3389, and CVE-2016-7190.Show less
CVE-2016-7190 1Microsoft 1Edge May 6, 2026 Oct 14, 2016 N/A· v4 7.5 HIGH· v3 7.6 HIGH· v2 The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerabil...Show more The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-3386, CVE-2016-3389, and CVE-2016-7194.Show less
CVE-2016-7189 1Microsoft 1Edge May 6, 2026 Oct 14, 2016 N/A· v4 7.5 HIGH· v3 9.3 HIGH· v2 The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code via a crafted web site, aka "Scripting Engine Remote Code Execution Vulnerability."
CVE-2016-3392 1Microsoft 1Edge May 6, 2026 Oct 14, 2016 N/A· v4 5.3 MEDIUM· v3 2.6 LOW· v2 The Edge Content Security Policy feature in Microsoft Edge does not properly validate documents, which allows remote attackers to bypass intended access restrictions via a crafted web site, aka "Microsoft Browser Securit...Show more The Edge Content Security Policy feature in Microsoft Edge does not properly validate documents, which allows remote attackers to bypass intended access restrictions via a crafted web site, aka "Microsoft Browser Security Feature Bypass Vulnerability."Show less
CVE-2016-3391 1Microsoft 2Edge Internet Explorer May 6, 2026 Oct 14, 2016 N/A· v4 5.3 MEDIUM· v3 2.6 LOW· v2 Microsoft Internet Explorer 10 and 11 and Microsoft Edge allow context-dependent attackers to discover credentials by leveraging access to a memory dump, aka "Microsoft Browser Information Disclosure Vulnerability."
CVE-2016-3390 1Microsoft 2Edge Internet Explorer May 6, 2026 Oct 14, 2016 N/A· v4 7.5 HIGH· v3 7.6 HIGH· v2 The scripting engines in Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, as demonstrated by the...Show more The scripting engines in Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, as demonstrated by the Chakra JavaScript engine, aka "Scripting Engine Memory Corruption Vulnerability."Show less
CVE-2016-3389 1Microsoft 1Edge May 6, 2026 Oct 14, 2016 N/A· v4 7.5 HIGH· v3 7.6 HIGH· v2 The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerabil...Show more The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-3386, CVE-2016-7190, and CVE-2016-7194.Show less
CVE-2016-3388 1Microsoft 2Edge Internet Explorer May 6, 2026 Oct 14, 2016 N/A· v4 5.3 MEDIUM· v3 2.6 LOW· v2 Microsoft Internet Explorer 10 and 11 and Microsoft Edge do not properly restrict access to private namespaces, which allows remote attackers to gain privileges via unspecified vectors, aka "Microsoft Browser Elevation o...Show more Microsoft Internet Explorer 10 and 11 and Microsoft Edge do not properly restrict access to private namespaces, which allows remote attackers to gain privileges via unspecified vectors, aka "Microsoft Browser Elevation of Privilege Vulnerability," a different vulnerability than CVE-2016-3387.Show less
CVE-2016-3387 1Microsoft 2Edge Internet Explorer May 6, 2026 Oct 14, 2016 N/A· v4 7.5 HIGH· v3 6.8 MEDIUM· v2 Microsoft Internet Explorer 10 and 11 and Microsoft Edge do not properly restrict access to private namespaces, which allows remote attackers to gain privileges via unspecified vectors, aka "Microsoft Browser Elevation o...Show more Microsoft Internet Explorer 10 and 11 and Microsoft Edge do not properly restrict access to private namespaces, which allows remote attackers to gain privileges via unspecified vectors, aka "Microsoft Browser Elevation of Privilege Vulnerability," a different vulnerability than CVE-2016-3388.Show less
CVE-2016-3386 1Microsoft 1Edge May 6, 2026 Oct 14, 2016 N/A· v4 7.5 HIGH· v3 9.3 HIGH· v2 The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerabil...Show more The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-3389, CVE-2016-7190, and CVE-2016-7194.Show less
CVE-2016-3382 1Microsoft 2Edge Internet Explorer May 6, 2026 Oct 14, 2016 N/A· v4 7.5 HIGH· v3 9.3 HIGH· v2 The scripting engines in Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, as demonstrat...Show more The scripting engines in Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, as demonstrated by the Chakra JavaScript engine, aka "Scripting Engine Memory Corruption Vulnerability."Show less
CVE-2016-3331 1Microsoft 2Edge Internet Explorer May 6, 2026 Oct 14, 2016 N/A· v4 7.5 HIGH· v3 9.3 HIGH· v2 Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Browser Memory Corruption Vulnera...Show more Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Browser Memory Corruption Vulnerability."Show less
CVE-2016-3267 1Microsoft 2Edge Internet Explorer May 6, 2026 Oct 14, 2016 N/A· v4 5.3 MEDIUM· v3 4.3 MEDIUM· v2 Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to determine the existence of unspecified files via a crafted web site, aka "Microsoft Browser Information Disclosure Vulnerability."
CVE-2016-3377 1Microsoft 1Edge May 6, 2026 Sep 14, 2016 N/A· v4 7.5 HIGH· v3 7.6 HIGH· v2 The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerabil...Show more The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-3350.Show less
CVE-2016-3374 1Microsoft 5Edge Windows 10Windows 8.1+2 more May 6, 2026 Sep 14, 2016 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 The PDF library in Microsoft Edge, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold, 1511, and 1607 allows remote attackers to obtain sensitive information via a crafted web site, aka "PD...Show more The PDF library in Microsoft Edge, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold, 1511, and 1607 allows remote attackers to obtain sensitive information via a crafted web site, aka "PDF Library Information Disclosure Vulnerability," a different vulnerability than CVE-2016-3370.Show less
CVE-2016-3370 1Microsoft 5Edge Windows 10Windows 8.1+2 more May 6, 2026 Sep 14, 2016 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 The PDF library in Microsoft Edge, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold, 1511, and 1607 allows remote attackers to obtain sensitive information via a crafted web site, aka "PD...Show more The PDF library in Microsoft Edge, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold, 1511, and 1607 allows remote attackers to obtain sensitive information via a crafted web site, aka "PDF Library Information Disclosure Vulnerability," a different vulnerability than CVE-2016-3374.Show less
CVE-2016-3351 1Microsoft 2Edge Internet Explorer Apr 22, 2026 Sep 14, 2016 N/A· v4 6.5 MEDIUM· v3 2.6 LOW· v2 Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to obtain sensitive information via a crafted web site, aka "Microsoft Browser Information Disclosure Vulnerability."
CVE-2016-3350 1Microsoft 1Edge May 6, 2026 Sep 14, 2016 N/A· v4 7.5 HIGH· v3 7.6 HIGH· v2 The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerabil...Show more The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-3377.Show less
CVE-2016-3330 1Microsoft 1Edge May 6, 2026 Sep 14, 2016 N/A· v4 7.5 HIGH· v3 7.6 HIGH· v2 Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Edge Memory Corruption Vulnerability," a different vulnerability th...Show more Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Edge Memory Corruption Vulnerability," a different vulnerability than CVE-2016-3294.Show less

Previous 1...313233...38 Next