Vulnerability identifier: #VU59287

Vulnerability risk: Low

CVSSv3.1: 5.5 [CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:L/A:L/E:P/RL:O/RC:C]

CVE-ID: CVE-2022-21970

CWE-ID: CWE-264

Exploitation vector: Local

Exploits in database: 1

• October 23, 2022
  • CVE-2022-21970 (POC OF CVE-2022-21970) [Github]

Impact: Information disclosure and data manipulation

Vulnerable software:
Microsoft Edge
Client/Desktop applications / Web browsers

Vendor: Microsoft