CVE Catalog

CVE-2026-58297

HighCVSS 7.1
Published: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.32%

23th percentile — higher than 23% of all known CVEs

Summary

A vulnerability in Microsoft Edge for Android allows an unauthorized attacker to disclose private personal information over a network. The issue stems from improper protection of information against unauthorized access.

Risk Assessment

The organization is at risk of leaking sensitive user data from Edge browser on Android devices, potentially leading to privacy breaches and legal consequences.

Recommendation

Immediately update Microsoft Edge for Android to the latest version available on Google Play. Consider temporarily restricting the use of this browser until patches are applied.

Original NVD description (English source)

Exposure of private personal information to an unauthorized actor in Microsoft Edge for Android allows an unauthorized attacker to disclose information over a network.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS