Microsoft Security Response Center

**What is the version information for this release?** Microsoft Edge Version Date Released Based on Chromium Version 96.0.1054.57 12/14/2021 96.0.4664.110

**What is the version information for this release?** Microsoft Edge Version Date Released Based on Chromium Version 96.0.1054.57 12/14/2021 96.0.4664.110

**What is the version information for this release?** Microsoft Edge Version Date Released Based on Chromium Version 96.0.1054.57 12/14/2021 96.0.4664.110

**Is the Preview Pane an attack vector for this vulnerability?** No, the Preview Pane is not an attack vector.

Users on the existing Desktop App Installer app can hover over the **Trusted app** text to see more details about the signer. This will help in determining if the app should not be installed.

**What privileges does the attacker gain?** An attacker would only be able to delete targeted files on a system. They would not gain privileges to view or modify file contents.

**What privileges are required to exploit this vulnerability?** The attacker must be authenticated to the target site, with the permission to modify their Display Name within SharePoint.

**What privileges are required to exploit this vulnerability?** The attacker must be authenticated to the target site, with the permission to use Manage Lists within SharePoint.

**There are multiple update packages available for some of the affected software. Do I need to install all the updates listed in the Security Updates table for the software?** Yes. Customers should apply all updates offered for the software installed on their systems. If multiple updates apply, they can be installed in any order.

**What type of information can be disclosed by this vulnerability?** This vulnerability could allow device security information to be disclosed including but not limited to security score, outdated operating system, and any malware infections.