Detections
Analytics
Microsoft Edge (Chromium) < 131.0.2903.48 Multiple Vulnerabilities
high Nessus Plugin ID 211402
Language:
Synopsis
The remote host has an web browser installed that is affected by multiple vulnerabilities.Description
The version of Microsoft Edge installed on the remote Windows host is prior to 131.0.2903.48. It is, therefore, affected by multiple vulnerabilities as referenced in the November 14, 2024 advisory.- Inappropriate implementation in Extensions in Google Chrome prior to 131.0.6778.69 allowed a remote attacker to bypass site isolation via a crafted Chrome Extension. (Chromium security severity: High) (CVE-2024-11110)
- Inappropriate implementation in Autofill in Google Chrome prior to 131.0.6778.69 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page.
(Chromium security severity: Medium) (CVE-2024-11111)
- Use after free in Media in Google Chrome on Windows prior to 131.0.6778.69 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium) (CVE-2024-11112)
- Use after free in Accessibility in Google Chrome prior to 131.0.6778.69 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium) (CVE-2024-11113)
- Inappropriate implementation in Views in Google Chrome on Windows prior to 131.0.6778.69 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium) (CVE-2024-11114)
- Insufficient policy enforcement in Navigation in Google Chrome on iOS prior to 131.0.6778.69 allowed a remote attacker to perform privilege escalation via a series of UI gestures. (Chromium security severity:
Medium) (CVE-2024-11115)
- Inappropriate implementation in Blink in Google Chrome prior to 131.0.6778.69 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page.
(Chromium security severity: Medium) (CVE-2024-11116)
- Inappropriate implementation in FileSystem in Google Chrome prior to 131.0.6778.69 allowed a remote attacker to bypass filesystem restrictions via a crafted HTML page. (Chromium security severity: Low) (CVE-2024-11117)
- Microsoft Edge (Chromium-based) Information Disclosure Vulnerability (CVE-2024-49025)
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.
Solution
Upgrade to Microsoft Edge version 131.0.2903.48 or later.See Also
http://www.nessus.org/u?a9b9d7d8
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-11110
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-11111
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-11112
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-11113
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-11114
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-11115
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-11116
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-11117
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49025
Plugin Details
Severity: High
ID: 211402
File Name: microsoft_edge_chromium_131_0_2903_48.nasl
Version: 1.4
Type: local
Agent: windows
Family: Windows
Published: 11/15/2024
Updated: 1/8/2025
Supported Sensors: Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: High
Score: 8.1
CVSS v2
Risk Factor: Critical
Base Score: 10
Temporal Score: 7.8
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
CVSS Score Source: CVE-2024-11115
CVSS v3
Risk Factor: High
Base Score: 8.8
Temporal Score: 7.9
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C
Vulnerability Information
CPE: cpe:/a:microsoft:edge
Required KB Items: SMB/Registry/Enumerated, installed_sw/Microsoft Edge (Chromium)
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 11/14/2024
Vulnerability Publication Date: 11/12/2024
Reference Information
CVE: CVE-2024-11110, CVE-2024-11111, CVE-2024-11112, CVE-2024-11113, CVE-2024-11114, CVE-2024-11115, CVE-2024-11116, CVE-2024-11117, CVE-2024-49025
IAVA: 2024-A-0753-S