Security Feature Bypass in Microsoft Edge for Android by Microsoft
CVE-2026-58523

6.5MEDIUM

Key Information:

Vendor

Microsoft

Vendor
CVE Published:
3 July 2026

What is CVE-2026-58523?

An improper access control vulnerability in Microsoft Edge for Android allows unauthorized attackers to exploit a security feature over a network. This flaw could potentially enable attackers to gain access to restricted areas of the app, compromising user data and privacy. Users are strongly advised to update their applications to ensure they are protected against this type of attack. For more details, refer to the official Microsoft advisory.

Affected Version(s)

Microsoft Edge (Chromium-based) 1.0.0.0 < 150.0.4078.48

References

CVSS V3.1

Score:
6.5
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.