CVE-2022-33639: 
vulnerability analysis and mitigation

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability (CVE-2022-33639) is a security flaw affecting Microsoft Edge browser versions up to (excluding) 103.0.5060.53. The vulnerability was disclosed on June 29, 2022, and has been assigned a CVSS v3.1 base score of 8.3 (HIGH) (NVD).

The vulnerability has been assessed with a CVSS v3.1 vector of CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H, indicating it is network accessible, requires high attack complexity, needs no privileges, requires user interaction, and has potential for high impacts on confidentiality, integrity, and availability. The CVSS v2.0 base score is 5.1 (MEDIUM) with a vector of (AV:N/AC:H/Au:N/C:P/I:P/A:P) (NVD).

If successfully exploited, this vulnerability could allow an attacker to achieve elevation of privilege in Microsoft Edge (Chromium-based). The high CVSS score indicates potential severe impacts on system confidentiality, integrity, and availability (NVD).

Users should upgrade to Microsoft Edge version 103.0.5060.53 or later to address this vulnerability. The fix has been included in security updates released by Microsoft (Gentoo Advisory).