- Description
- Microsoft Edge (Chromium-based) Spoofing Vulnerability
- Source
- secure@microsoft.com
- NVD status
- Analyzed
CVSS 3.1
- Type
- Secondary
- Base score
- 4.3
- Impact score
- 1.4
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
- Severity
- MEDIUM
- secure@microsoft.com
- CWE-449
- nvd@nist.gov
- NVD-CWE-noinfo
- Hype score
- Not currently trending
Patch out for CVE-2024-49041, an Edge vulnerability we disclosed to @Microsoft. This finding came as a result of our previous disclosure of CVE-2024-43461 and CVE-2024-38112. A case of narrow patching in Internet Explorer vs. Microsoft Edge! #infosec https://t.co/lKtnGhtxpJ
@gothburz
10 Dec 2024
2753 Impressions
5 Retweets
15 Likes
3 Bookmarks
0 Replies
0 Quotes
CVE-2024-49041 Spoofing Vulnerability Found in Chromium-Based Microsoft Edge Browser A Spoofing vulnerability exists in Microsoft Edge, which is based on Chromium. https://t.co/XxIA0noXFl
@VulmonFeeds
6 Dec 2024
23 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
A new vulnerability with increased severity was disclosed for Microsoft Edge (CVE-2024-49041) https://t.co/9Rn5Rulw9b
@vuldb
6 Dec 2024
57 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:edge_chromium:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7737A3BC-15D3-4A75-AA0E-BB2658B522DF",
"versionEndExcluding": "131.0.2903.86"
}
],
"operator": "OR"
}
]
}
]