Microsoft Edge upgrades to version 120.0.2210.61

This content has been archived. But, the content is true and relevant to the underlying technology products or infrastructure services.

On 7th December 2023, Microsoft released the latest Edge version 120.0.2210.61. This version is the stable channel release version for desktops. It resolves security issues reported in the Chromium project. It also resolved Microsoft-specific threats in the Edge browser.

  • Microsoft released the latest version of Edge browser 120.0.2210.61 on 7 December 2023 for the stable channel.
  • The latest Edge Version 120.0.2210.61 supersedes Edge Version 119.0.2151.97. Edge version 119.0.2151.97 was released on 27 November 2023. It fixed the CVE-2023-6345 security vulnerability.
  • Edge version 120.0.2210.61 resolves three Edge-specific security vulnerabilities.
  • Edge version 120.0.2210.61 also resolves 10 security vulnerabilities that affect the Chromium project. 5 of these threats were disclosed by external security researchers. We have listed these 5 vulnerabilities below.
  • Edge version 120.0.2210.61 corresponds to the Chrome stable release version for Windows version 120.0.6099.62/.63. Chrome was updated to 120.0.6099.62/.63 on 5 December 2023.
  • The latest stable version 120.0.2210.61 also incorporates 2 feature updates and 5 policy updates. These updates have been shared in the relevant sections below.

Edge security updates resolve Chromium-specific and Edge-specific vulnerabilities. The latest Edge version 120.0.2210.61 takes care of 10 Chromium vulnerabilities and 3 Edge-specific threats. These threats are discussed below.

10 security vulnerabilities have been addressed in the latest Chromium version. 5 of these threats were reported by external researchers. The details of these threats are given below.

CVE detailsBug idSeverityImpact
CVE-2023-65081497984HighUse after free in Media Stream
CVE-2023-65091494565HighUse after free in Side Panel Search
CVE-2023-65101480152MediumUse after free in Media Capture
CVE-2023-65111478613LowInappropriate implementation in Autofill.
CVE-2023-65121457702LowInappropriate implementation in Web Browser UI

3 security vulnerabilities are specific to the Edge browser. These have been resolved in the latest Edge version 120.0.2210.61. The details of these threats are shared below.

CVE detailsCVSS ScoreSeverityImpactComments
CVE-2023-356189.6ModerateElevation of PrivilegeThis vulnerability could lead to a browser sandbox escape.
CVE-2023-368804.8LowInformation Disclosure VulnerabilitySuccessful exploitation of this vulnerability requires an attacker to gather information specific to the environment and take additional actions prior to exploitation to prepare the target environment.
CVE-2023-381744.3LowInformation Disclosure VulnerabilityThe user would have to click on a specially crafted URL to be compromised by the attacker. Exploitation of this vulnerability only discloses limited information, no sensitive information can be obtained.

The latest version of Edge 120.0.2210.61 includes the following feature updates:

  • RendererAppContainer. For extra security benefits, the Windows native app container is enabled by default. Note: If Enterprise organizations identify a compatibility issue due to code injection from security software, they should follow up with the software publisher directly. Alternatively, they can use the RendererAppContainerEnabled policy to trade off the security benefits in Microsoft Edge with their other software.
  • Updated SmartActionsBlockList policy. The SmartActionsBlockList policy is updated with new policy option mappings. Administrators can now configure the policy to control Smart actions like definitions on websites (smart_actions_website) or control Smart actions in pdfs and on websites (smart_actions).

The following new policies have been added in the Edge version 120.0.2210.61:

The latest version of Microsoft Edge 120.0.2210.61 can be installed automatically. For this, you can close the browser and open it again. This should force Edge to pull the latest updated version.

Edge can be also updated manually. For this, you can download the offline installer file for Microsoft Edge from the Microsoft Update Catalog site.

The direct download links for Edge version 120.0.2210.61 are shared below:

You can check the Microsoft Edge version installed on your system by following the instructions below:

  1. In your Microsoft Edge browser, click on the 3 dots (…) on the very right-hand side of the window
  2. Click on Help and Feedback
  3. Click on About Microsoft Edge
  4. This should give you the Microsoft Edge version on the system

The current update is being rolled out to the eligible systems.

If you restart the Microsoft Edge browser, your browser should automatically pick the latest version 120.0.2210.61 from the Microsoft Servers.

Rajesh Dhawan

Rajesh Dhawan is a technology professional who loves to blog about smart wearables, Cloud computing and Microsoft technologies. He loves to break complex problems into manageable chunks of meaningful information.