The BSI has issued a warning for the Microsoft Edge browser because two highly dangerous security holes can be exploited by attackers. The problem can be solved with a quick update.
The vulnerabilities CVE-2023-36026 and CVE-2023-36008 reported by the BSI have a CVSS base score of 7.8 and are therefore considered highly dangerous. The BSI describes the vulnerabilities as “A remote, anonymous attacker can exploit several vulnerabilities in Microsoft Edge to execute arbitrary program code or misrepresent information.” All versions below version number 119.0.2151.72 (Stable Channel) or below version 118.0.2088.109 Extended Stable Channel are affected.
Update completed in seconds
All Edge versions Linux, MacOS X and Windows are affected. In larger companies, the Edge browser usually receives its update via the Microsoft Endpoint Manager console via policy. The update is extremely easy for SMEs and individual users. Normally, Edge will automatically update immediately when the browser is restarted. However, users can call up “Help and feedback / information about Microsoft Edge” in the browser and thus open the information about the browser. The update will then appear automatically.
About Microsoft Germany Microsoft Deutschland GmbH was founded in 1983 as the German subsidiary of Microsoft Corporation (Redmond, USA). Microsoft is committed to empowering every person and company in the world to achieve more. This challenge can only be mastered together, which is why diversity and inclusion have been firmly anchored in the corporate culture from the very beginning. As the world's leading manufacturer of productive software solutions and modern services in the age of intelligent cloud and intelligent edge, as well as a developer of innovative hardware, Microsoft sees itself as a partner to its customers to help them benefit from the digital transformation. Security and data protection have top priority when developing solutions. As the world's largest contributor, Microsoft is driving open source technology through its leading developer platform GitHub. With LinkedIn, the largest career network, Microsoft promotes professional networking worldwide.