CVE-2023-24892
EUVD-2023-2888214.03.2023, 17:15
Microsoft Edge (Chromium-based) Webview2 Spoofing Vulnerability
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| microsoft | edge_chromium | 𝑥 < 111.0.1661.41 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
- CWE-601 - URL Redirection to Untrusted Site ('Open Redirect')A web application accepts a user-controlled input that specifies a link to an external site, and uses that link in a Redirect. This simplifies phishing attacks.
- CWE-290 - Authentication Bypass by SpoofingThis attack-focused weakness is caused by improperly implemented authentication schemes that are subject to spoofing attacks.