CVE-2024-21388
Description
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
Microsoft Corporation
Severity: MEDIUM
CVE ID: CVE-2024-21388
CVSS Score: 6.5
CVSS Metrics: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:L
Proof Of Concept
d0rb
This Python script exploits a vulnerability (CVE-2024-21388) in Microsoft Edge, allowing silent installation of browser extensions with elevated privileges via a private API.
Refrence: GitHub