Type Confusion Vulnerability in Microsoft Edge (Chromium-based)
CVE-2026-58289

9CRITICAL

Key Information:

Vendor

Microsoft

Vendor
CVE Published:
3 July 2026

What is CVE-2026-58289?

A type confusion vulnerability in Microsoft Edge (Chromium-based) enables an attacker to exploit mismatched access types, leading to unauthorized code execution over a network. This flaw can be leveraged to compromise the security of systems running the browser, highlighting the importance of applying available security patches to mitigate potential threats.

Affected Version(s)

Microsoft Edge (Chromium-based) 1.0.0.0 < 150.0.4078.48

References

CVSS V3.1

Score:
9
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
None
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.