| VID |
50409 |
| Severity |
40 |
| Port |
139,445 |
| Protocol |
TCP |
| Class |
SMB |
| Detailed Description |
The version of Microsoft Edge installed on the remote Windows host is prior to 114.0.1823.41. It is, therefore, affected by a vulnerability as referenced in the June 6, 2023 advisory.
- Type confusion in V8 in Google Chrome prior to 114.0.5735.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) (CVE-2023-3079)
* References:
https://learn.microsoft.com/en-us/deployedge/microsoft-edge-relnotes-security
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-3079
* Platforms Affected:
Microsoft Edge versions prior to 114.0.1823.41
Microsoft Windows Any version |
| Recommendation |
Upgrade to the latest version of Microsoft Edge at (114.0.1823.41 or later), as described in the Microsoft Security bulletin at
https://learn.microsoft.com/en-us/DeployEdge/microsoft-edge-relnotes-security |
| Related URL |
CVE-2023-3079 (CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
