Remote Code Execution Vulnerability in Microsoft Edge by Microsoft
CVE-2026-57986

7.5HIGH

Key Information:

Vendor

Microsoft

Vendor
CVE Published:
3 July 2026

What is CVE-2026-57986?

A use-after-free vulnerability exists in Microsoft Edge (Chromium-based) that can be exploited by an attacker to execute arbitrary code on the system after successful network access. This could lead to unauthorized access, data breaches, or further compromise of the system. Users are encouraged to apply the latest patches to mitigate the risk associated with this vulnerability.

Affected Version(s)

Microsoft Edge (Chromium-based) 1.0.0.0 < 150.0.4078.48

References

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.