Primary

Context

Microsoft Edge Elevation of Privilege Vulnerability

Vulnerability

Patched

A vulnerability allowing improper link resolution before file access, known as 'link following', has been identified in Microsoft Edge (Chromium-based). This vulnerability allows an authorized attacker to locally elevate privileges. To exploit this issue, an attacker must log onto the system and run a specially crafted application or convince a local user to open a malicious file. Successful exploitation could grant SYSTEM privileges.

Impact

Exploitation of this vulnerability could lead to unauthorized privilege escalation, allowing an attacker to gain SYSTEM privileges on the affected machine.

Remediation

Users can apply the official security update available through the Microsoft Edge Updater to address this vulnerability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

7.5

exploitability

3.0

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

7.5

exploitability

3.0

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Microsoft Edge Elevation of Privilege Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Microsoft Edge

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating