CVE-2022-30128

CVSS 2.0 Score 5.1 of 10 (medium)

Details

Published Jun 1, 2022
Updated: Jan 2, 2025
CWE ID 362

Summary

CVE-2022-30128 is an elevation of privilege vulnerability affecting Microsoft Edge browsers based on Chromium. An attacker who successfully exploits this flaw can escalate their privileges, potentially gaining control over an affected system. The precise cause of the vulnerability lies in the way Microsoft Edge handles certain web content. Successful exploitation requires a specially crafted webpage, which could be used in phishing or drive-by attacks. Users are advised to keep their browsers updated to protect against known vulnerabilities.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Microsoft Edge Chromium

Affected Vendors

  • Microsoft