Primary

Context

Microsoft Edge Spoofing Vulnerability on Android

Vulnerability

Patched

A spoofing vulnerability has been identified in Microsoft Edge for Android, specifically in version 140.0.3485.71. This vulnerability arises from insufficient user interface warnings regarding dangerous operations, which could allow an unauthorized attacker to perform spoofing over a network. The issue requires user interaction, as the user must click on a specially crafted URL for the attack to be successful.

Impact

Exploitation of this vulnerability could lead to spoofing, allowing attackers to impersonate users or manipulate user interactions.

Remediation

Users can download the security update for this vulnerability from the Microsoft Edge release notes and security update guidance.

Added: Sep 16, 2025, 7:19 PM

Updated: Sep 16, 2025, 7:19 PM

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

0.6

exploitability

4.4

remediation

7.7

relevance

0.5

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

0.6

exploitability

4.4

remediation

7.7

relevance

0.5

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Microsoft Edge Spoofing Vulnerability on Android

Vulnerability

Impact

Remediation

Affected Products

Microsoft Edge

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating