CVE Catalog

CVE-2026-57974

HighCVSS 8.8
Published: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.57%

43th percentile — higher than 43% of all known CVEs

Summary

An integer overflow or wraparound vulnerability has been discovered in Microsoft Edge (Chromium-based). This flaw allows an unauthorized attacker to execute code remotely on the victim's system.

Risk Assessment

An attacker can remotely execute arbitrary code on the user's machine, potentially leading to full system compromise, data theft, or malware installation.

Recommendation

Immediately update Microsoft Edge to the latest version provided by the vendor. Enforce automatic update policies for all users in the organization.

Original NVD description (English source)

Integer overflow or wraparound in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS