CVE-2026-58289
CriticalCVSS 9.0Exploitation Probability (EPSS)
Low risk41th percentile — higher than 41% of all known CVEs
Summary
A type confusion vulnerability in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code remotely over a network.
Risk Assessment
An attacker can exploit this flaw to gain control over the victim's system, leading to data theft, malware installation, or further attacks within the internal network.
Recommendation
Immediately update Microsoft Edge to the latest version available via the official update channel. Implement policies to block unknown sources and restrict access to suspicious websites.
Original NVD description (English source)
Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

