CVE Catalog

CVE-2026-58288

HighCVSS 8.3
Published: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.45%

36th percentile — higher than 36% of all known CVEs

Summary

A Use-After-Free vulnerability in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code remotely over a network.

Risk Assessment

An attacker can remotely execute arbitrary code in the context of the browser, potentially leading to system compromise, data theft, or lateral movement within the organization's network.

Recommendation

Immediately update Microsoft Edge to the latest version available through the official update channel. Inform users to restart the browser after the update.

Original NVD description (English source)

Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS