Common Vulnerabilities and Exposures (CVE)

CVE-2026-58523

Jul 15, 2026 22:27:44 UTC

Improper access control in Microsoft Edge for Android allows an unauthorized attacker to bypass a security feature over a network.

CVE-2026-58522

Jul 15, 2026 22:27:44 UTC

Relative path traversal in Microsoft Edge for Android allows an unauthorized attacker to disclose information locally.

CVE-2026-58300

Jul 15, 2026 22:27:43 UTC

Absolute path traversal in Microsoft Edge for Android allows an unauthorized attacker to disclose information locally.

CVE-2026-58299

Jul 15, 2026 22:27:43 UTC

Time-of-check time-of-use (toctou) race condition in Microsoft Edge for Android allows an unauthorized attacker to execute code over a network.

CVE-2026-58298

Jul 15, 2026 22:27:42 UTC

Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.

CVE-2026-58297

Jul 15, 2026 22:27:42 UTC

Exposure of private personal information to an unauthorized actor in Microsoft Edge for Android allows an unauthorized attacker to disclose information over a network.

CVE-2026-58296

Jul 15, 2026 22:27:41 UTC

Exposure of private personal information to an unauthorized actor in Microsoft Edge for Android allows an unauthorized attacker to disclose information over a network.

CVE-2026-58295

Jul 15, 2026 22:27:40 UTC

Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to bypass a security feature over a network.

CVE-2026-58294

Jul 15, 2026 22:27:40 UTC

Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

CVE-2026-58293

Jul 15, 2026 22:27:39 UTC

External control of file name or path in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

CVE-2026-58292

Jul 15, 2026 22:27:39 UTC

Improper input validation in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

CVE-2026-58291

Jul 15, 2026 22:27:38 UTC

Operation on a resource after expiration or release in Microsoft Edge (Chromium-based) allows an unauthorized attacker to disclose information over a network.

CVE-2026-58290

Jul 15, 2026 22:27:37 UTC

Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

CVE-2026-58289

Jul 15, 2026 22:27:37 UTC

Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

CVE-2026-58288

Jul 15, 2026 22:27:36 UTC

Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.