| VID |
50383 |
| Severity |
40 |
| Port |
139.445 |
| Protocol |
TCP |
| Class |
SMB |
| Detailed Description |
The version of Microsoft Edge installed on the remote Windows host is prior to 102.0.1245.41. It is, therefore, affected by multiple vulnerabilities as referenced in the June 13, 2022 advisory.
- Chromium: Use after free in WebGPU (CVE-2022-2007)
- Chromium: Out of bounds memory access in WebGL (CVE-2022-2008)
- Chromium: Out of bounds read in compositing (CVE-2022-2010)
- Chromium: Use after free in ANGLE (CVE-2022-2011)
* References:
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-2007
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-2008
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-2010
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-2011
* Platforms Affected:
Microsoft Edge versions prior to 102.0.1245.41
Microsoft Windows Any version |
| Recommendation |
Upgrade to Microsoft Edge version 102.0.1245.41 or later. |
| Related URL |
CVE-2022-2007,CVE-2022-2008,CVE-2022-2010,CVE-2022-2011 (CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
