Information Disclosure Vulnerability in Microsoft Edge by Microsoft
CVE-2026-57991

7.4HIGH

Key Information:

Vendor

Microsoft

Vendor
CVE Published:
3 July 2026

What is CVE-2026-57991?

An improper link resolution issue in Microsoft Edge (Chromium-based) can allow unauthorized attackers to gain access to sensitive information during file access operations over a network. This flaw highlights the importance of ensuring proper link management and security precautions when dealing with file paths in web applications.

Affected Version(s)

Microsoft Edge (Chromium-based) 1.0.0.0 < 150.0.4078.48

References

CVSS V3.1

Score:
7.4
Severity:
HIGH
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.