CVE-2026-58290
HighCVSS 7.5Exploitation Probability (EPSS)
Low risk17th percentile — higher than 17% of all known CVEs
Summary
A type confusion vulnerability in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code remotely over a network.
Risk Assessment
An attacker can exploit this flaw to gain control over the victim's system, leading to data theft, malware installation, or further privilege escalation within the organization's network.
Recommendation
Immediately update Microsoft Edge to the latest version available through the official update channel. Enforce a policy to block unknown or unsafe websites until the patch is applied.
Original NVD description (English source)
Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

