Defense in Depth Vulnerability in Microsoft Edge - Microsoft
CVE-2026-32187

4.2MEDIUM

Key Information:

Vendor: Microsoft
Status: Microsoft Edge (chromium-based)
Vendor: CVE Published:; 27 March 2026

What is CVE-2026-32187?

Microsoft Edge (Chromium-based) contains a Defense in Depth vulnerability that could allow an attacker to compromise the affected system. This vulnerability highlights potential weaknesses in code execution or security features, leveraging intricate methods that can bypass traditional security controls. Users are urged to apply the latest security updates to mitigate the risks associated with this vulnerability.

Affected Version(s)

Microsoft Edge (Chromium-based) 1.0.0.0 < 146.0.3856.84

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE...

vendor-advisorypatch

CVSS V3.1

Score:

4.2

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 27, 2026
Vulnerability Reserved
Mar 11, 2026

CVE-2026-32187 Data

JSON