CVE-2026-58297
HighCVSS 7.1Exploitation Probability (EPSS)
Low risk23th percentile — higher than 23% of all known CVEs
Summary
A vulnerability in Microsoft Edge for Android allows an unauthorized attacker to disclose private personal information over a network. The issue stems from improper protection of information against unauthorized access.
Risk Assessment
The organization is at risk of leaking sensitive user data from Edge browser on Android devices, potentially leading to privacy breaches and legal consequences.
Recommendation
Immediately update Microsoft Edge for Android to the latest version available on Google Play. Consider temporarily restricting the use of this browser until patches are applied.
Original NVD description (English source)
Exposure of private personal information to an unauthorized actor in Microsoft Edge for Android allows an unauthorized attacker to disclose information over a network.

