Primary

Context

Microsoft Edge Defense in Depth Vulnerability

Vulnerability

Patched

A defense in depth vulnerability has been identified in Microsoft Edge (Chromium-based) version 146.0.3856.84. This vulnerability requires user interaction to be exploited, as an attacker must craft a specific URL for the user to click on. While the vulnerability has a low impact on confidentiality and integrity, it does not affect availability.

Impact

Exploitation of this vulnerability could lead to unauthorized viewing of sensitive information and the ability to make minor alterations to such information.

Remediation

Users are advised to update to the latest version of Microsoft Edge. The security update is available through the Microsoft Edge Update mechanism.

Added: Mar 27, 2026, 9:35 PM

Updated: Mar 27, 2026, 9:35 PM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

3.1

exploitability

4.2

remediation

7.7

relevance

4.8

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

3.1

exploitability

4.2

remediation

7.7

relevance

4.8

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Microsoft Edge Defense in Depth Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Microsoft Edge

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating