{"@odata.context":"https://api.msrc.microsoft.com/sug/v2.0/sugodata/v2.0/en-US/$metadata#vulnerability/$entity","id":"00000000-0000-0000-0000-0000551d1f3c","releaseDate":"2021-06-24T07:00:00Z","cveNumber":"CVE-2021-34506","cveTitle":"Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability","releaseNumber":"2021-Jun","vulnType":"Security Vulnerability","latestRevisionDate":"2023-08-17T07:00:00Z","cweList":[],"cweDetailsListForSearch":[],"mitreText":"CVE-2021-34506","mitreUrl":"https://www.cve.org/CVERecord?id=CVE-2021-34506","publiclyDisclosed":"No","exploited":"No","latestSoftwareReleaseId":0,"olderSoftwareReleaseId":0,"denialOfService":"N/A","tag":"Microsoft Edge (Chromium-based)","issuingCna":"Microsoft","issuingCnaId":0,"severityId":100000001,"severity":"Important","impactId":100000007,"impact":"Security Feature Bypass","langCode":"en-US","baseScore":"6.1","temporalScore":"5.3","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N/E:U/RL:O/RC:C","vectorStringSource":"Microsoft","isMariner":false,"customerActionRequired":true,"customerActionRequiredId":0,"cweDetailsList":[],"articles":[{"articleType":"FAQ","description":"<p><strong>What is the version information for this release?</strong></p>\n<table>\n<thead>\n<tr>\n<th>Microsoft Edge Version</th>\n<th>Date Released</th>\n<th>Based on Chromium Version</th>\n</tr>\n</thead>\n<tbody>\n<tr>\n<td>91.0.864.59</td>\n<td>6/24/2021</td>\n<td>91.0.4472.101</td>\n</tr>\n</tbody>\n</table>\n","ordinal":10000},{"articleType":"FAQ","description":"<p><strong>According to the CVSS metric, a successful exploitation could lead to a scope change (S:C). What does this mean for this vulnerability?</strong></p>\n<p>The vulnerability is in the web server, but the malicious scripts execute in the victim\u2019s browser on their machine.</p>\n","ordinal":10000}],"revisions":[{"cveNumber":"CVE-2021-34506","version":1,"revisionDate":"2021-06-24T07:00:00Z","initialDate":"0001-01-01T00:00:00Z","description":"<p>Information published.</p>\n","unformattedDescription":"Information published.","notificationNeeded":false,"notificationSent":false,"sourceId":"589e57fe-fcca-eb11-a840-000d3a6d3364"},{"cveNumber":"CVE-2021-34506","version":1.1,"revisionDate":"2021-09-21T07:00:00Z","initialDate":"0001-01-01T00:00:00Z","description":"<p>Updated information to include CVSS scores. This is an informational change only.</p>\n","unformattedDescription":"Updated information to include CVSS scores. This is an informational change only.","notificationNeeded":false,"notificationSent":false,"sourceId":"d8df44a3-2b1b-ec11-a84a-000d3a6d3364"},{"cveNumber":"CVE-2021-34506","version":1.2,"revisionDate":"2023-08-01T07:00:00Z","initialDate":"0001-01-01T00:00:00Z","description":"<p>Added an FAQ. This is an information change only.</p>\n","unformattedDescription":"Added an FAQ. This is an information change only.","notificationNeeded":false,"notificationSent":false,"sourceId":"efb98ae8-3c30-ee11-9336-000d3ac5fb71"},{"cveNumber":"CVE-2021-34506","version":1.3,"revisionDate":"2023-08-17T07:00:00Z","initialDate":"0001-01-01T00:00:00Z","description":"<p>Updated information to include CVSS scores. This is an informational change only.</p>\n","unformattedDescription":"Updated information to include CVSS scores. This is an informational change only.","notificationNeeded":false,"notificationSent":false,"sourceId":"725954bd-4c3d-ee11-935a-000d3afbc7d7"}]}