CVE-2023-36026

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Nov 16, 2023
Updated: Nov 23, 2023

Summary

CVE-2023-36026 is a new spoofing vulnerability affecting Microsoft Edge browsers based on Chromium. This issue allows malicious actors to manipulate the display of web pages in such a way that users may be deceived into believing they are interacting with a legitimate site, when in fact they are on a fraudulent one. The attacker can use this vulnerability to mimic trusted websites, potentially stealing sensitive information or tricking users into installing malware. Microsoft is currently working on a patch to address this issue, and users are advised to keep their browsers updated to protect against exploitation.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Microsoft Edge Chromium

Affected Vendors

  • Microsoft

Advisories, Assessments, and Mitigations

Prioritize, Pinpoint, and Act to Prevent Vulnerability Exploits with Recorded Future

Note: This is just a basic overview providing quick insights into CVE-2023-36026 information. Gain full access to comprehensive CVE data, third party vulnerabilities, compromised credentials and more with Recorded Future
  • Gain complete coverage of your cyber, third party, and physical attack surface
  • Proactively mitigate threats before they turn into costly attacks
  • Make fast, effective, data-driven decisions

Book your demo

Sign in

Back to Vulnerability Database