thuizenga
(thuizenga)
September 15, 2023, 2:41pm
1
anyone seeing edge in their vulnerability lists? I have 4 for recent edge vulns that i feel are all patched.
Here is one example.
Microsoft Edge Chromium: CVE-2023-4761 Out of bounds memory access in FedCM
it states “Out of bounds memory access in FedCM in Google Chrome prior to 116.0.5845.179” and that my version is Microsoft Edge 116.0.1938.81.
I feel like this is looking at the chrome version and not the edge version.
Microsoft lists the version i have as being the latest version that was released on Tuesday.
Microsoft Edge release notes for Stable Channel | Microsoft Learn
npales
(npales)
September 15, 2023, 3:25pm
2
Yes. Same here. I opened a support case
thuizenga
(thuizenga)
September 15, 2023, 4:48pm
3
Thanks, we just did the same…
bcoleman
(bcoleman)
September 15, 2023, 9:30pm
4
Rapid 7 Team. Any updates on this one?
CVE-2023-4761
CVE-2023-4762
CVE-2023-4763
CVE-2023-4764
Our tooling accidentally picked up the Chromium version instead of the Edge version for these checks. This was rectified with Friday’s content release.
Please ensure you have taken the content from Friday 15th September to rectify this issue.