{
  "affected": [],
  "aliases": [
    "CVE-2023-35618"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2023-12-07T21:15:07Z",
    "severity": "CRITICAL"
  },
  "details": "Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability",
  "id": "GHSA-h9fx-g2cp-w46c",
  "modified": "2023-12-07T21:31:12Z",
  "published": "2023-12-07T21:31:12Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-35618"
    },
    {
      "type": "WEB",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35618"
    },
    {
      "type": "WEB",
      "url": "https://security.gentoo.org/glsa/202402-05"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ]
}

{
  "GSD": {
    "alias": "CVE-2023-35618",
    "id": "GSD-2023-35618"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2023-35618"
      ],
      "details": "Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability",
      "id": "GSD-2023-35618",
      "modified": "2023-12-13T01:20:46.099737Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "secure@microsoft.com",
        "ID": "CVE-2023-35618",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "Microsoft Edge (Chromium-based)",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "\u003c",
                          "version_name": "1.0.0",
                          "version_value": "120.0.2210.61"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "Microsoft"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability"
          }
        ]
      },
      "impact": {
        "cvss": [
          {
            "baseScore": 9.6,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C",
            "version": "3.1"
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "Elevation of Privilege"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35618",
            "refsource": "MISC",
            "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35618"
          },
          {
            "name": "https://security.gentoo.org/glsa/202402-05",
            "refsource": "MISC",
            "url": "https://security.gentoo.org/glsa/202402-05"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "cve": {
        "configurations": [
          {
            "nodes": [
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:a:microsoft:edge_chromium:*:*:*:*:*:*:*:*",
                    "matchCriteriaId": "7F3A842F-A2C5-40B0-9C88-9F1D2E8C4370",
                    "versionEndExcluding": "120.0.2210.61",
                    "vulnerable": true
                  }
                ],
                "negate": false,
                "operator": "OR"
              }
            ]
          }
        ],
        "descriptions": [
          {
            "lang": "en",
            "value": "Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability"
          },
          {
            "lang": "es",
            "value": "Vulnerabilidad de elevaci\u00f3n de privilegios en Microsoft Edge (basado en Chromium)"
          }
        ],
        "id": "CVE-2023-35618",
        "lastModified": "2024-02-03T09:15:09.640",
        "metrics": {
          "cvssMetricV31": [
            {
              "cvssData": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 9.6,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
                "version": "3.1"
              },
              "exploitabilityScore": 2.8,
              "impactScore": 6.0,
              "source": "secure@microsoft.com",
              "type": "Primary"
            }
          ]
        },
        "published": "2023-12-07T21:15:07.450",
        "references": [
          {
            "source": "secure@microsoft.com",
            "tags": [
              "Patch",
              "Vendor Advisory"
            ],
            "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35618"
          },
          {
            "source": "secure@microsoft.com",
            "url": "https://security.gentoo.org/glsa/202402-05"
          }
        ],
        "sourceIdentifier": "secure@microsoft.com",
        "vulnStatus": "Modified",
        "weaknesses": [
          {
            "description": [
              {
                "lang": "en",
                "value": "NVD-CWE-noinfo"
              }
            ],
            "source": "nvd@nist.gov",
            "type": "Primary"
          }
        ]
      }
    }
  }
}

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Edge ist ein Web Browser von Microsoft.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Microsoft Edge ausnutzen, um seine Privilegien zu erh\u00f6hen und um Informationen offenzulegen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2023-3085 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-3085.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2023-3085 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-3085"
      },
      {
        "category": "external",
        "summary": "Release notes for Microsoft Edge Security Updates vom 2023-12-07",
        "url": "https://docs.microsoft.com/en-us/deployedge/microsoft-edge-relnotes-security"
      },
      {
        "category": "external",
        "summary": "Gentoo Linux Security Advisory GLSA-202402-05 vom 2024-02-03",
        "url": "https://security.gentoo.org/glsa/202402-05"
      }
    ],
    "source_lang": "en-US",
    "title": "Microsoft Edge: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2024-02-04T23:00:00.000+00:00",
      "generator": {
        "date": "2024-08-15T18:02:31.729+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.5"
        }
      },
      "id": "WID-SEC-W-2023-3085",
      "initial_release_date": "2023-12-07T23:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2023-12-07T23:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2024-02-04T23:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von Gentoo aufgenommen"
        }
      ],
      "status": "final",
      "version": "2"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Gentoo Linux",
            "product": {
              "name": "Gentoo Linux",
              "product_id": "T012167",
              "product_identification_helper": {
                "cpe": "cpe:/o:gentoo:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Gentoo"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Microsoft Edge Stable Channel \u003c 120.0.2210.61",
            "product": {
              "name": "Microsoft Edge Stable Channel \u003c 120.0.2210.61",
              "product_id": "T031539",
              "product_identification_helper": {
                "cpe": "cpe:/a:microsoft:edge:stable_channel__120.0.2210.61"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Microsoft"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-35618",
      "notes": [
        {
          "category": "description",
          "text": "Es existiert eine Schwachstelle in Microsoft Edge. Der Fehler ist noch nicht im Detail beschrieben, kann aber dazu f\u00fchren, dass eine Browser-Sandbox verlassen wird. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um seine Privilegien zu erweitern. Eine erfolgreiche Ausnutzung erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "T012167"
        ]
      },
      "release_date": "2023-12-07T23:00:00.000+00:00",
      "title": "CVE-2023-35618"
    },
    {
      "cve": "CVE-2023-38174",
      "notes": [
        {
          "category": "description",
          "text": "In Microsoft Edge existieren mehrere Schwachstellen. Die Fehler sind noch nicht im Detail beschrieben. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um vertrauliche Informationen offenzulegen. Zur erfolgreichen Ausnutzung einer dieser Schwachstellen muss ein Benutzer auf eine speziell gestaltete URL klicken."
        }
      ],
      "product_status": {
        "known_affected": [
          "T012167"
        ]
      },
      "release_date": "2023-12-07T23:00:00.000+00:00",
      "title": "CVE-2023-38174"
    },
    {
      "cve": "CVE-2023-36880",
      "notes": [
        {
          "category": "description",
          "text": "In Microsoft Edge existieren mehrere Schwachstellen. Die Fehler sind noch nicht im Detail beschrieben. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um vertrauliche Informationen offenzulegen. Zur erfolgreichen Ausnutzung einer dieser Schwachstellen muss ein Benutzer auf eine speziell gestaltete URL klicken."
        }
      ],
      "product_status": {
        "known_affected": [
          "T012167"
        ]
      },
      "release_date": "2023-12-07T23:00:00.000+00:00",
      "title": "CVE-2023-36880"
    }
  ]
}

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Edge ist ein Web Browser von Microsoft.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Microsoft Edge ausnutzen, um seine Privilegien zu erh\u00f6hen und um Informationen offenzulegen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2023-3085 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-3085.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2023-3085 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-3085"
      },
      {
        "category": "external",
        "summary": "Release notes for Microsoft Edge Security Updates vom 2023-12-07",
        "url": "https://docs.microsoft.com/en-us/deployedge/microsoft-edge-relnotes-security"
      },
      {
        "category": "external",
        "summary": "Gentoo Linux Security Advisory GLSA-202402-05 vom 2024-02-03",
        "url": "https://security.gentoo.org/glsa/202402-05"
      }
    ],
    "source_lang": "en-US",
    "title": "Microsoft Edge: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2024-02-04T23:00:00.000+00:00",
      "generator": {
        "date": "2024-08-15T18:02:31.729+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.5"
        }
      },
      "id": "WID-SEC-W-2023-3085",
      "initial_release_date": "2023-12-07T23:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2023-12-07T23:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2024-02-04T23:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von Gentoo aufgenommen"
        }
      ],
      "status": "final",
      "version": "2"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Gentoo Linux",
            "product": {
              "name": "Gentoo Linux",
              "product_id": "T012167",
              "product_identification_helper": {
                "cpe": "cpe:/o:gentoo:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Gentoo"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Microsoft Edge Stable Channel \u003c 120.0.2210.61",
            "product": {
              "name": "Microsoft Edge Stable Channel \u003c 120.0.2210.61",
              "product_id": "T031539",
              "product_identification_helper": {
                "cpe": "cpe:/a:microsoft:edge:stable_channel__120.0.2210.61"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Microsoft"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-35618",
      "notes": [
        {
          "category": "description",
          "text": "Es existiert eine Schwachstelle in Microsoft Edge. Der Fehler ist noch nicht im Detail beschrieben, kann aber dazu f\u00fchren, dass eine Browser-Sandbox verlassen wird. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um seine Privilegien zu erweitern. Eine erfolgreiche Ausnutzung erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "T012167"
        ]
      },
      "release_date": "2023-12-07T23:00:00.000+00:00",
      "title": "CVE-2023-35618"
    },
    {
      "cve": "CVE-2023-38174",
      "notes": [
        {
          "category": "description",
          "text": "In Microsoft Edge existieren mehrere Schwachstellen. Die Fehler sind noch nicht im Detail beschrieben. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um vertrauliche Informationen offenzulegen. Zur erfolgreichen Ausnutzung einer dieser Schwachstellen muss ein Benutzer auf eine speziell gestaltete URL klicken."
        }
      ],
      "product_status": {
        "known_affected": [
          "T012167"
        ]
      },
      "release_date": "2023-12-07T23:00:00.000+00:00",
      "title": "CVE-2023-38174"
    },
    {
      "cve": "CVE-2023-36880",
      "notes": [
        {
          "category": "description",
          "text": "In Microsoft Edge existieren mehrere Schwachstellen. Die Fehler sind noch nicht im Detail beschrieben. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um vertrauliche Informationen offenzulegen. Zur erfolgreichen Ausnutzung einer dieser Schwachstellen muss ein Benutzer auf eine speziell gestaltete URL klicken."
        }
      ],
      "product_status": {
        "known_affected": [
          "T012167"
        ]
      },
      "release_date": "2023-12-07T23:00:00.000+00:00",
      "title": "CVE-2023-36880"
    }
  ]
}

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Microsoft Edge versions ant\u00e9rieures \u00e0 120.0.2210.61",
      "product": {
        "name": "Edge",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2023-6512",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-6512"
    },
    {
      "name": "CVE-2023-6508",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-6508"
    },
    {
      "name": "CVE-2023-36880",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-36880"
    },
    {
      "name": "CVE-2023-6509",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-6509"
    },
    {
      "name": "CVE-2023-35618",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-35618"
    },
    {
      "name": "CVE-2023-38174",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-38174"
    },
    {
      "name": "CVE-2023-6510",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-6510"
    },
    {
      "name": "CVE-2023-6511",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-6511"
    }
  ],
  "initial_release_date": "2023-12-08T00:00:00",
  "last_revision_date": "2023-12-08T00:00:00",
  "links": [
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-35618 du 07 d\u00e9cembre 2023",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35618"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-36880 du 07 d\u00e9cembre 2023",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36880"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-6508 du 07 d\u00e9cembre 2023",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-6508"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-6511 du 07 d\u00e9cembre 2023",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-6511"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-6512 du 07 d\u00e9cembre 2023",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-6512"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-38174 du 07 d\u00e9cembre 2023",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-38174"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-6510 du 07 d\u00e9cembre 2023",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-6510"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-6509 du 07 d\u00e9cembre 2023",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-6509"
    }
  ],
  "reference": "CERTFR-2023-AVI-1006",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2023-12-08T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eMicrosoft Edge\u003c/span\u003e. Elles permettent \u00e0 un attaquant de\nprovoquer un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur, une\n\u00e9l\u00e9vation de privil\u00e8ges et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es\n.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans Microsoft Edge",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft du 07 d\u00e9cembre 2023",
      "url": "https://msrc.microsoft.com/update-guide/"
    }
  ]
}

{
  "document": {
    "acknowledgments": [
      {
        "names": [
          "Anonymous"
        ]
      }
    ],
    "aggregate_severity": {
      "namespace": "https://www.microsoft.com/en-us/msrc/security-update-severity-rating-system",
      "text": "Moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Public",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en-US",
    "notes": [
      {
        "category": "general",
        "text": "To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle",
        "title": "Additional Resources"
      },
      {
        "category": "legal_disclaimer",
        "text": "The information provided in the Microsoft Knowledge Base is provided \\\"as is\\\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.",
        "title": "Disclaimer"
      },
      {
        "category": "general",
        "text": "Required. The vulnerability documented by this CVE requires customer action to resolve.",
        "title": "Customer Action"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "secure@microsoft.com",
      "name": "Microsoft Security Response Center",
      "namespace": "https://msrc.microsoft.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "CVE-2023-35618 Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability - HTML",
        "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35618"
      },
      {
        "category": "self",
        "summary": "CVE-2023-35618 Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability - CSAF",
        "url": "https://msrc.microsoft.com/csaf/2023/msrc_cve-2023-35618.json"
      },
      {
        "category": "external",
        "summary": "Microsoft Exploitability Index",
        "url": "https://www.microsoft.com/en-us/msrc/exploitability-index?rtc=1"
      },
      {
        "category": "external",
        "summary": "Microsoft Support Lifecycle",
        "url": "https://support.microsoft.com/lifecycle"
      },
      {
        "category": "external",
        "summary": "Common Vulnerability Scoring System",
        "url": "https://www.first.org/cvss"
      }
    ],
    "title": "Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability",
    "tracking": {
      "current_release_date": "2023-12-14T08:00:00.000Z",
      "generator": {
        "date": "2025-01-01T02:18:26.170Z",
        "engine": {
          "name": "MSRC Generator",
          "version": "1.0"
        }
      },
      "id": "msrc_CVE-2023-35618",
      "initial_release_date": "2023-12-12T08:00:00.000Z",
      "revision_history": [
        {
          "date": "2023-12-07T08:00:00.000Z",
          "legacy_version": "1",
          "number": "1",
          "summary": "Information published."
        },
        {
          "date": "2023-12-14T08:00:00.000Z",
          "legacy_version": "1.1",
          "number": "2",
          "summary": "Added FAQ to indicate the version numbers for this CVE. This is an informational change only."
        }
      ],
      "status": "final",
      "version": "2"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c120.0.2210.61",
            "product": {
              "name": "Microsoft Edge (Chromium-based) \u003c120.0.2210.61",
              "product_id": "1"
            }
          },
          {
            "category": "product_version",
            "name": "120.0.2210.61",
            "product": {
              "name": "Microsoft Edge (Chromium-based) 120.0.2210.61",
              "product_id": "11655"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft Edge (Chromium-based)"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-35618",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "general",
          "text": "Microsoft",
          "title": "Assigning CNA"
        },
        {
          "category": "faq",
          "text": "In a web-based attack scenario, an attacker could host a website (or leverage a compromised website that accepts or hosts user-provided content) that contains a specially crafted file that is designed to exploit the vulnerability. However, an attacker would have no way to force the user to visit the website. Instead, an attacker would have to convince the user to click a link, typically by way of an enticement in an email or Instant Messenger message, and then convince the user to open the specially crafted file.",
          "title": "According to the CVSS metric, user interaction is required (UI:R). What interaction would the user have to do?"
        },
        {
          "category": "faq",
          "text": "Per our severity guidelines, the amount of user interaction or preconditions required to allow this sort of exploitation downgraded the severity, specifically it says, \u0026quot;If a bug requires more than a click, a key press, or several preconditions, the severity will be downgraded\u0026quot;. The CVSS scoring system doesn\u0027t allow for this type of nuance.",
          "title": "Why is the severity for this CVE rated as Moderate, but the CVSS score is higher than normal?"
        },
        {
          "category": "faq",
          "text": "An attacker who successfully exploited this vulnerability could allow the attacker to gain the privileges needed to perform code execution.",
          "title": "What privileges could be gained by an attacker who successfully exploited the vulnerability?"
        },
        {
          "category": "faq",
          "text": "This vulnerability could lead to a browser sandbox escape.",
          "title": "According to the CVSS metric, a successful exploitation could lead to a scope change (S:C). What does this mean for this vulnerability?"
        },
        {
          "category": "faq",
          "text": "120.0.2210.61: 120.0.2210.61, 12/7/2023: 12/7/2023, 120.0.6099.62/.63: 120.0.6099.62/.63",
          "title": "What is the version information for this release?"
        }
      ],
      "product_status": {
        "fixed": [
          "11655"
        ],
        "known_affected": [
          "1"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-35618 Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability - HTML",
          "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35618"
        },
        {
          "category": "self",
          "summary": "CVE-2023-35618 Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability - CSAF",
          "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35618"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-12-07T08:00:00.000Z",
          "details": "120.0.2210.61:Security Update:https://docs.microsoft.com/en-us/DeployEdge/microsoft-edge-relnotes-security",
          "product_ids": [
            "1"
          ],
          "url": "https://docs.microsoft.com/en-us/DeployEdge/microsoft-edge-relnotes-security"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.6,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "environmentalsScore": 0.0,
            "exploitCodeMaturity": "UNPROVEN",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "remediationLevel": "OFFICIAL_FIX",
            "reportConfidence": "CONFIRMED",
            "scope": "CHANGED",
            "temporalScore": 8.3,
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C",
            "version": "3.1"
          },
          "products": [
            "1"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Elevation of Privilege"
        },
        {
          "category": "exploit_status",
          "details": "Exploited:No;Latest Software Release:Exploitation Less Likely;Older Software Release:Exploitation Less Likely"
        }
      ],
      "title": "Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability"
    }
  ]
}

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:microsoft:edge_chromium:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "7F3A842F-A2C5-40B0-9C88-9F1D2E8C4370",
              "versionEndExcluding": "120.0.2210.61",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability"
    },
    {
      "lang": "es",
      "value": "Vulnerabilidad de elevaci\u00f3n de privilegios en Microsoft Edge (basado en Chromium)"
    }
  ],
  "id": "CVE-2023-35618",
  "lastModified": "2025-01-01T03:15:08.007",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 9.6,
          "baseSeverity": "CRITICAL",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "CHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 2.8,
        "impactScore": 6.0,
        "source": "secure@microsoft.com",
        "type": "Primary"
      }
    ]
  },
  "published": "2023-12-07T21:15:07.450",
  "references": [
    {
      "source": "secure@microsoft.com",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35618"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35618"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://security.gentoo.org/glsa/202402-05"
    }
  ],
  "sourceIdentifier": "secure@microsoft.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-416"
        }
      ],
      "source": "secure@microsoft.com",
      "type": "Secondary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-noinfo"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}