| VID |
50390 |
| Severity |
40 |
| Port |
139,445 |
| Protocol |
TCP |
| Class |
SMB |
| Detailed Description |
The version of Microsoft Edge installed on the remote Windows host is prior to 103.0.1264.49. It is, therefore, affected by a vulnerability as referenced in the July 6, 2022 advisory.
- Heap buffer overflow in WebRTC (CVE-2022-2294)
- javascript engine V8 Type confusionb (CVE-2022-2295)
* References:
http://www.nessus.org/u?c255ed38
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-2294
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-2295
* Platforms Affected:
Microsoft Edge versions prior to 103.0.1264.49
Microsoft Windows Any version |
| Recommendation |
Upgrade to the latest version of Microsoft Edge at (103.0.1264.49 or later), as described in the Microsoft Security bulletin at
https://docs.microsoft.com/en-us/DeployEdge/microsoft-edge-relnotes-security#july-22-2022 |
| Related URL |
CVE-2022-2294 (CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
