CVE Catalog

CVE-2026-58286

HighCVSS 8.1
Published: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.39%

30th percentile — higher than 30% of all known CVEs

Summary

A vulnerability in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network. The issue stems from improper access control.

Risk Assessment

An attacker can impersonate a trusted website, potentially leading to credential theft or phishing attacks against organization users.

Recommendation

Immediately update Microsoft Edge to the latest version available from the vendor. Implement policies to block unknown websites and monitor network traffic for suspicious activities.

Original NVD description (English source)

Improper access control in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS