CVE-2020-1555: Improper Restriction of Operations within the Bounds of a Memory Buffer

August 17, 2020 (updated July 21, 2021)

A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge (HTML-based), aka ‘Scripting Engine Memory Corruption Vulnerability’.

References

nvd.nist.gov/vuln/detail/CVE-2020-1555
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1555

Detect and mitigate CVE-2020-1555 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →