Out-of-bounds Read Vulnerability in Microsoft Edge from Microsoft
CVE-2025-29834

7.5HIGH

Key Information:

Vendor: Microsoft
Status: Microsoft Edge (chromium-based)
Vendor: CVE Published:; 12 April 2025

What is CVE-2025-29834?

The vulnerability in Microsoft Edge allows an unauthorized attacker to perform an out-of-bounds read operation, resulting in the potential for remote code execution over a network. This issue primarily affects users of the Chromium-based version of Microsoft Edge and highlights significant security concerns for those with outdated software. It's crucial to update to the latest version to mitigate this risk.

Affected Version(s)

Microsoft Edge (Chromium-based) Unknown 1.0.0.0 < 134.0.3124.93

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE...

vendor-advisory

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 12, 2025
Vulnerability Reserved
Mar 11, 2025