CVE Catalog

CVE-2026-57985

HighCVSS 7.6
Published: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.42%

34th percentile — higher than 34% of all known CVEs

Summary

An improper input validation vulnerability in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code remotely over a network.

Risk Assessment

An attacker could gain full control of the affected system, potentially installing malware, stealing sensitive data, or disrupting network operations.

Recommendation

Immediately update Microsoft Edge to the latest version from the official vendor repository. Enforce a policy to block scripts from untrusted sources.

Original NVD description (English source)

Improper input validation in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS