CVE Catalog

CVE-2026-57984

HighCVSS 7.5
Published: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.44%

35th percentile — higher than 35% of all known CVEs

Summary

A Use-After-Free vulnerability in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network. The issue stems from improper memory management when processing specially crafted network requests.

Risk Assessment

An attacker can remotely execute arbitrary code in the browser context, potentially leading to system compromise, data theft, or malware installation.

Recommendation

Immediately update Microsoft Edge to the latest version available from the official repository. Implement policies to block unknown or suspicious scripts and restrict access to unauthorized websites.

Original NVD description (English source)

Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS