CVE Catalog

CVE-2026-58290

HighCVSS 7.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.26%

17th percentile — higher than 17% of all known CVEs

Summary

A type confusion vulnerability in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code remotely over a network.

Risk Assessment

An attacker can exploit this flaw to gain control over the victim's system, leading to data theft, malware installation, or further network compromise within the organization.

Recommendation

Immediately update Microsoft Edge to the latest version provided by the vendor. Enforce automatic update policies for all users.

Original NVD description (English source)

Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS