Vulnerability in Microsoft Edge (Chromium-based)

CVE-2023-28286

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

EPSS: 0.004 (57.8th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.1 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N/E:U/RL:O/RC:C.

Affected products

Microsoft Edge (Chromium-based) — versions 1.0.0
Microsoft Edge (Chromium-based) Extended Stable — versions 1.0.0

References

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability (vendor-advisory)

Frequently asked questions

What is CVE-2023-28286?: CVE-2023-28286 is a medium-severity vulnerability in Microsoft Edge (Chromium-based). CVSS score: 6.1/10. Published 2023-04-27.
How severe is CVE-2023-28286?: Medium severity. CVSS v3 base score is 6.1 out of 10.