The version of Microsoft Edge installed on the remote Windows host is prior to 118.0.2088.46. It is, therefore, affected by multiple vulnerabilities as referenced in the October 13, 2023 advisory.

  - Use after free in Site Isolation in Google Chrome prior to 118.0.5993.70 allowed a remote attacker to     potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical)     (CVE-2023-5218)

  - Use after free in Cast in Google Chrome prior to 118.0.5993.70 allowed a remote attacker who had     compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chromium     security severity: Low) (CVE-2023-5473)

  - Heap buffer overflow in PDF in Google Chrome prior to 118.0.5993.70 allowed a remote attacker who     convinced a user to engage in specific user interactions to potentially exploit heap corruption via a     crafted PDF file. (Chromium security severity: Medium) (CVE-2023-5474)

  - Inappropriate implementation in DevTools in Google Chrome prior to 118.0.5993.70 allowed an attacker who     convinced a user to install a malicious extension to bypass discretionary access control via a crafted     Chrome Extension. (Chromium security severity: Medium) (CVE-2023-5475)

  - Use after free in Blink History in Google Chrome prior to 118.0.5993.70 allowed a remote attacker to     potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)     (CVE-2023-5476)

  - Inappropriate implementation in Installer in Google Chrome prior to 118.0.5993.70 allowed a local attacker     to bypass discretionary access control via a crafted command. (Chromium security severity: Low)     (CVE-2023-5477)

  - Inappropriate implementation in Autofill in Google Chrome prior to 118.0.5993.70 allowed a remote attacker     to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low) (CVE-2023-5478)

  - Inappropriate implementation in Extensions API in Google Chrome prior to 118.0.5993.70 allowed an attacker     who convinced a user to install a malicious extension to bypass an enterprise policy via a crafted HTML     page. (Chromium security severity: Medium) (CVE-2023-5479)

  - Inappropriate implementation in Downloads in Google Chrome prior to 118.0.5993.70 allowed a remote     attacker to spoof security UI via a crafted HTML page. (Chromium security severity: Medium)     (CVE-2023-5481)

  - Inappropriate implementation in Intents in Google Chrome prior to 118.0.5993.70 allowed a remote attacker     to bypass content security policy via a crafted HTML page. (Chromium security severity: Medium)     (CVE-2023-5483)

  - Inappropriate implementation in Navigation in Google Chrome prior to 118.0.5993.70 allowed a remote     attacker to spoof security UI via a crafted HTML page. (Chromium security severity: Medium)     (CVE-2023-5484)

  - Inappropriate implementation in Autofill in Google Chrome prior to 118.0.5993.70 allowed a remote attacker     to bypass autofill restrictions via a crafted HTML page. (Chromium security severity: Low) (CVE-2023-5485)

  - Inappropriate implementation in Input in Google Chrome prior to 118.0.5993.70 allowed a remote attacker to     spoof security UI via a crafted HTML page. (Chromium security severity: Low) (CVE-2023-5486)

  - Inappropriate implementation in Fullscreen in Google Chrome prior to 118.0.5993.70 allowed an attacker who     convinced a user to install a malicious extension to bypass navigation restrictions via a crafted Chrome     Extension. (Chromium security severity: Medium) (CVE-2023-5487)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Detections

Analytics

Microsoft Edge (Chromium) < 118.0.2088.46 Multiple Vulnerabilities

high Nessus Plugin ID 183055

Version 1.6

Version 1.5

Version 1.4

Version 1.3

Version 1.2

Version 1.1

Version 1.0

Version 1.0

Version 1.6 Nov 9, 2023, 5:53 PM IAVM reference Plugin Feed: 202311091753
Version 1.5 Nov 2, 2023, 4:31 AM IAVM reference Plugin Feed: 202311020431
Version 1.4 Oct 27, 2023, 12:17 PM IAVM reference Plugin Feed: 202310271217
Version 1.3 Oct 23, 2023, 4:39 PM CVSS metrics ("CVSSv2 score" set to 10.0. "CVSSv2 vector" set to "CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C". "CVSSv3 score" set to 8.8. "CVSSv3 vector" set to "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H") CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:U/RL:OF/RC:C". "CVSSv3 temporal vector" set to "CVSS:3.0/E:U/RL:O/RC:C") CVSSv2 score source (set to "CVE-2023-5476") Plugin Feed: 202310231639
Version 1.2 Oct 21, 2023, 4:19 PM IAVM reference STIG Severity (set to "I") Plugin Feed: 202310211619
Version 1.1 Oct 21, 2023, 3:09 AM CVE (set "CVE" coverage to "CVE-2023-36409") CVSS metrics ("CVSSv2 vector" changed from "CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C" to none. "CVSSv3 vector" changed from "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" to none) CVSSv2 score source (changed from "CVE-2023-5476" to "None") Exploit attributes ("Exploit available" set to "False") Plugin metadata Plugin Feed: 202310210309
Version 1.0 Oct 21, 2023, 1:17 AM CVE (set "CVE" coverage to "CVE-2023-36409") CVSS metrics ("CVSSv2 vector" changed from "CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C" to none) CVSS metrics ("CVSSv3 vector" changed from "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" to none) CVSSv2 score source (changed from "CVE-2023-5476" to "None") Exploit attributes ("Exploit available" set to "False") Plugin metadata Plugin Feed: 202310210117
Version 1.0 Oct 14, 2023, 1:14 AM New Plugin Feed: 202310140114