CVE Catalog

CVE-2026-58523

MediumCVSS 6.5
Published: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.50%

39th percentile — higher than 39% of all known CVEs

Summary

An improper access control vulnerability in Microsoft Edge for Android allows an unauthorized attacker to bypass a security feature over a network. The issue stems from inadequate access controls within the browser.

Risk Assessment

An attacker can remotely bypass browser security features, potentially leading to data confidentiality breaches or unauthorized actions on the victim's device.

Recommendation

It is recommended to immediately update Microsoft Edge for Android to the latest version available on Google Play. Also, monitor vendor security advisories for patches.

Original NVD description (English source)

Improper access control in Microsoft Edge for Android allows an unauthorized attacker to bypass a security feature over a network.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS