Primary

Context

Microsoft Edge Spoofing Vulnerability

Vulnerability

Patched

A spoofing vulnerability has been identified in Microsoft Edge (Chromium-based) for Android, specifically in version 148.0.3967.55. This vulnerability arises from a user interface misrepresentation of critical information, which could allow an unauthorized attacker to perform spoofing over a network. The issue is related to how the browser handles right-to-left (RTL) characters in domain names, potentially leading to incorrect information being displayed in the address bar.

Impact

Exploitation of this vulnerability could lead to successful spoofing attacks, where an attacker could manipulate how information is presented to the user, potentially causing them to be misled or deceived.

Remediation

Users are advised to update to the latest version of Microsoft Edge (Chromium-based) for Android. The security update is included in version 148.0.3967.55.

Added: May 12, 2026, 7:27 PM

Updated: May 12, 2026, 7:27 PM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

0.6

exploitability

4.2

remediation

7.7

relevance

8.1

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

0.6

exploitability

4.2

remediation

7.7

relevance

8.1

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Microsoft Edge Spoofing Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Microsoft Edge

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating