Detections
Analytics
Microsoft Edge (Chromium) < 97.0.1072.69 Multiple Vulnerabilities
medium Nessus Plugin ID 156916
Language:
Synopsis
The remote host has an web browser installed that is affected by multiple vulnerabilities.Description
The version of Microsoft Edge installed on the remote Windows host is prior to 97.0.1072.69. It is, therefore, affected by multiple vulnerabilities as referenced in the January 20, 2022 advisory.- Microsoft Edge for Android Spoofing Vulnerability. (CVE-2022-23258)
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.
Solution
Upgrade to Microsoft Edge version 97.0.1072.69 or later.See Also
http://www.nessus.org/u?4c365598
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-0289
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-0290
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-0291
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-0292
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-0293
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-0294
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-0295
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-0296
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-0297
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-0298
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-0300
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-0301
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-0302
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-0303
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-0304
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-0305
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-0306
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-0307
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-0308
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-0309
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-0310
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-0311
Plugin Details
Severity: Medium
ID: 156916
File Name: microsoft_edge_chromium_97_0_1072_69.nasl
Version: 1.5
Type: local
Agent: windows
Family: Windows
Published: 1/20/2022
Updated: 5/6/2022
Supported Sensors: Frictionless Assessment Agent, Frictionless Assessment AWS, Frictionless Assessment Azure, Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: Low
Score: 1.4
CVSS v2
Risk Factor: Medium
Base Score: 4.3
Temporal Score: 3.2
Vector: CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N
CVSS Score Source: CVE-2022-23258
CVSS v3
Risk Factor: Medium
Base Score: 4.3
Temporal Score: 3.8
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C
Vulnerability Information
CPE: cpe:/a:microsoft:edge
Required KB Items: installed_sw/Microsoft Edge (Chromium), SMB/Registry/Enumerated
Exploit Ease: No known exploits are available
Patch Publication Date: 1/20/2022
Vulnerability Publication Date: 1/19/2022
Reference Information
CVE: CVE-2022-23258