CVE Catalog

CVE-2026-57991

HighCVSS 7.4
Published: Translated: NVD NIST

Exploitation Probability (EPSS)

Elevated risk
0.76%

51th percentile — higher than 51% of all known CVEs

Summary

A vulnerability in Microsoft Edge (Chromium-based) allows an unauthorized attacker to disclose information over a network due to improper link resolution before file access.

Risk Assessment

An attacker can remotely read sensitive data from the victim's system, leading to information disclosure and privacy breach.

Recommendation

Immediately update Microsoft Edge to the latest version available from the vendor.

Original NVD description (English source)

Improper link resolution before file access ('link following') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to disclose information over a network.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS