CVE-2023-36883

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Jul 14, 2023

Updated: Jul 26, 2023

Summary

CVE-2023-36883 is a newly disclosed vulnerability affecting Microsoft Edge for iOS. This spoofing vulnerability allows an attacker to manipulate the webview component, potentially deceiving users into believing they are interacting with a trusted website. An attacker could exploit this issue to display fraudulent content, steal sensitive information, or install malware. Users are advised to update their Microsoft Edge for iOS apps as soon as possible to mitigate this risk. The full extent and impact of this vulnerability are still under investigation.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Microsoft Edge

Affected Vendors

Microsoft

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/rzrFk8
https://www.cve.org/CVERecord?id=CVE-2023-36883
https://nvd.nist.gov/vuln/detail/CVE-2023-36883

Back to Vulnerability Database