[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

Microsoft Edge Information Disclosure Vulnerability - CVE-2018-8370

ID: oval:org.secpod.oval:def:47108Date: (C)2018-08-15   (M)2024-03-06
Class: VULNERABILITYFamily: windows




A information disclosure vulnerability exists when WebAudio Library improperly handles audio requests. An attacker who has successfully exploited this vulnerability might be able to read privileged data across trust boundaries. In browsing scenarios, an attacker could convince a user to visit a malicious site and leverage the vulnerability to obtain privileged information from the browser process, such as sensitive data from other opened tabs. An attacker could also inject malicious code into advertising networks used by trusted sites or embed malicious code on a compromised, but trusted, site. The update addresses the vulnerability by correcting how the WebAudio Library handles audio requests.

Platform:
Microsoft Windows 10
Microsoft Windows Server 2016
Product:
Microsoft Edge
Reference:
CVE-2018-8370
CVE    1
CVE-2018-8370
CPE    17
cpe:/o:microsoft:windows_10
cpe:/o:microsoft:windows_server_2016:::x64
cpe:/o:microsoft:windows_10:1607:::x64
cpe:/o:microsoft:windows_10:1607:::x86
...

© SecPod Technologies