Microsoft has released new versions of Microsoft Edge Stable and Microsoft Edge Extended Stable to the release channel on July 21, 2023. The update for Microsoft Edge Stable includes fixes for 14 security issues in the browser, three of which are specific to Edge and the remaining 11 are specific to Chromium.
Chromium forms the core of Microsoft Edge, which it shares with other web browsers such as Google Chrome, Brave, Vivaldi, and Opera.
Just a day earlier, Google released an update for its Chrome web browser that addressed a total of 20 different security issues.
The update is already available. Edge users can check their current version by selecting Menu > Help > About Microsoft Edge. The browser automatically checks for updates when the help page is opened and will download and install any updates it finds.
After installing the latest update, the browser should display the version 115.0.1901.183 (Microsoft Edge Stable) or 114.0.1823.90 (Microsoft Edge Extended Stable).
Microsoft states that it has addressed three Edge-specific vulnerabilities and 11 vulnerabilities affecting all Chromium-based web browsers.
One of the Edge-specific vulnerabilities only affects the Android version of the browser. The severity ratings for these three vulnerabilities are moderate and low.
- Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability — CVE-2023-38187
- Microsoft Edge for Android Spoofing Vulnerability — CVE-2023-38173
- Microsoft Edge (Chromium-based) Spoofing Vulnerability — CVE-2023-35392
The eleven Chromium-specific security issues are listed on the Microsoft Update Guide website.
Microsoft Edge 115 introduces a few new policies and just a single new feature. The Microsoft Edge management service is a new area in the Microsoft 365 admin center that gives administrators control over the browser’s management.
Administrators can configure all Edge policies there, according to Microsoft. Additional details regarding the functionality have been provided on a newly published support page. Availability is limited to Microsoft Edge 115 or newer on Windows 10, Windows 11, or Windows Server 2016 or newer.
Microsoft lists the following new policies added in Edge 115:
- ComposeInlineEnabled – Compose is enabled for writing on the web
- EdgeManagementEnabled – Microsoft Edge management enabled
- EdgeManagementEnrollmentToken – Microsoft Edge management enrollment token
- EdgeManagementExtensionsFeedbackEnabled – Microsoft Edge management extensions feedback enabled
- EnhanceSecurityModeIndicatorUIEnabled – Manage the indicator UI of the Enhanced Security Mode (ESM) feature in Microsoft Edge
- EnhanceSecurityModeOptOutUXEnabled – Manage opt-out user experience for Enhanced Security Mode (ESM) in Microsoft Edge
- SearchForImageEnabled – Search for image enabled
- WalletDonationEnabled – Wallet Donation Enabled
Administrators are advised to upgrade the browser as soon as possible to protect against potential attacks targeting the closed security vulnerabilities.
Image Source: Unsplash