Common Vulnerabilities and Exposures (CVE)

CVE-2026-14617

Jul 3, 2026 21:45:10 UTC

A security vulnerability has been detected in NousResearch hermes-agent up to 2026.4.30. Affected is the function GatewayStreamConsumer._filter_and_accumulate of the file gateway/stream_consumer.py of the component Streaming Reasoning Tag F...

CVE-2026-58523

Jul 3, 2026 21:26:27 UTC

Improper access control in Microsoft Edge for Android allows an unauthorized attacker to bypass a security feature over a network.

CVE-2026-58291

Jul 3, 2026 21:26:27 UTC

Operation on a resource after expiration or release in Microsoft Edge (Chromium-based) allows an unauthorized attacker to disclose information over a network.

CVE-2026-45489

Jul 3, 2026 21:26:26 UTC

Microsoft Edge (Chromium-based) Spoofing Vulnerability

CVE-2026-54998

Jul 3, 2026 21:26:25 UTC

Incorrect authorization in Microsoft Exchange Online allows an authorized attacker to elevate privileges over a network.

CVE-2026-58597

Jul 3, 2026 21:26:25 UTC

Insufficient ui warning of dangerous operations in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.

CVE-2026-58524

Jul 3, 2026 21:26:24 UTC

Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.

CVE-2026-58300

Jul 3, 2026 21:26:24 UTC

Absolute path traversal in Microsoft Edge for Android allows an unauthorized attacker to disclose information locally.

CVE-2026-58298

Jul 3, 2026 21:26:23 UTC

Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.

CVE-2026-58297

Jul 3, 2026 21:26:23 UTC

Exposure of private personal information to an unauthorized actor in Microsoft Edge for Android allows an unauthorized attacker to disclose information over a network.

CVE-2026-58296

Jul 3, 2026 21:26:22 UTC

Exposure of private personal information to an unauthorized actor in Microsoft Edge for Android allows an unauthorized attacker to disclose information over a network.

CVE-2026-58295

Jul 3, 2026 21:26:22 UTC

Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to bypass a security feature over a network.

CVE-2026-58294

Jul 3, 2026 21:26:21 UTC

Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

CVE-2026-58293

Jul 3, 2026 21:26:21 UTC

External control of file name or path in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

CVE-2026-58292

Jul 3, 2026 21:26:20 UTC

Improper input validation in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.