Total CVEs

143,081

Critical Severity

4,044

High Severity

14,530

Last 7 Days

1,279
Quick preset (or use dates below)
Clear Filters
๐Ÿ“… Showing Year: 2026 (January 1 - December 31, 2026) View All Years โ†’
Showing 1 - 20 of 54 CVEs
CVE-2026-58523 MEDIUM - 6.5

Improper access control in Microsoft Edge for Android allows an unauthorized attacker to bypass a security feature over a network.

Vendor: microsoft
Product: edge_chromium
Published: Jul 03, 2026
Source: NVD
CVE-2026-58597 MEDIUM - 4.3

Insufficient ui warning of dangerous operations in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.

Vendor: microsoft
Product: edge_chromium
Published: Jul 03, 2026
Source: NVD
CVE-2026-58524 MEDIUM - 5.4

Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.

Vendor: microsoft
Product: edge_chromium
Published: Jul 03, 2026
Source: NVD
CVE-2026-58522 MEDIUM - 6.8

Relative path traversal in Microsoft Edge for Android allows an unauthorized attacker to disclose information locally.

Vendor: microsoft
Product: edge_chromium
Published: Jul 03, 2026
Source: NVD
CVE-2026-58300 MEDIUM - 6.2

Absolute path traversal in Microsoft Edge for Android allows an unauthorized attacker to disclose information locally.

Vendor: microsoft
Product: edge_chromium
Published: Jul 03, 2026
Source: NVD
CVE-2026-58299 HIGH - 7.5

Time-of-check time-of-use (toctou) race condition in Microsoft Edge for Android allows an unauthorized attacker to execute code over a network.

Vendor: microsoft
Product: edge_chromium
Published: Jul 03, 2026
Source: NVD
CVE-2026-58298 HIGH - 7.2

Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.

Vendor: microsoft
Product: edge_chromium
Published: Jul 03, 2026
Source: NVD
CVE-2026-58297 HIGH - 7.1

Exposure of private personal information to an unauthorized actor in Microsoft Edge for Android allows an unauthorized attacker to disclose information over a network.

Vendor: microsoft
Product: edge_chromium
Published: Jul 03, 2026
Source: NVD
CVE-2026-58296 HIGH - 7.1

Exposure of private personal information to an unauthorized actor in Microsoft Edge for Android allows an unauthorized attacker to disclose information over a network.

Vendor: microsoft
Product: edge_chromium
Published: Jul 03, 2026
Source: NVD
CVE-2026-58295 HIGH - 8.3

Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to bypass a security feature over a network.

Vendor: microsoft
Product: edge_chromium
Published: Jul 03, 2026
Source: NVD
CVE-2026-58294 HIGH - 7.5

Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

Vendor: microsoft
Product: edge_chromium
Published: Jul 03, 2026
Source: NVD
CVE-2026-58293 HIGH - 8.1

External control of file name or path in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

Vendor: microsoft
Product: edge_chromium
Published: Jul 03, 2026
Source: NVD
CVE-2026-58292 HIGH - 7.5

Improper input validation in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

Vendor: microsoft
Product: edge_chromium
Published: Jul 03, 2026
Source: NVD
CVE-2026-58291 MEDIUM - 6.1

Operation on a resource after expiration or release in Microsoft Edge (Chromium-based) allows an unauthorized attacker to disclose information over a network.

Vendor: microsoft
Product: edge_chromium
Published: Jul 03, 2026
Source: NVD
CVE-2026-58290 HIGH - 7.5

Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

Vendor: microsoft
Product: edge_chromium
Published: Jul 03, 2026
Source: NVD
CVE-2026-58289 CRITICAL - 9.0

Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

Vendor: microsoft
Product: edge_chromium
Published: Jul 03, 2026
Source: NVD
CVE-2026-58288 HIGH - 8.3

Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

Vendor: microsoft
Product: edge_chromium
Published: Jul 03, 2026
Source: NVD
CVE-2026-58287 HIGH - 8.3

Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

Vendor: microsoft
Product: edge_chromium
Published: Jul 03, 2026
Source: NVD
CVE-2026-58286 HIGH - 8.1

Improper access control in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.

Vendor: microsoft
Product: edge_chromium
Published: Jul 03, 2026
Source: NVD
CVE-2026-58285 HIGH - 8.3

Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

Vendor: microsoft
Product: edge_chromium
Published: Jul 03, 2026
Source: NVD