Primary

Context

Microsoft Edge Security Feature Bypass Vulnerability

Vulnerability

Patched

A vulnerability in Microsoft Edge (Chromium-based) has been identified, allowing an unauthorized attacker to bypass a security feature over the network. This issue arises from improper input validation.

Impact

Exploitation of this vulnerability could lead to a security feature bypass, allowing an authenticated local attacker to disable or enable Windows Virtualization-Based Security (VBS) without administrative privileges. While this does not directly allow code execution as another user, it weakens system security, potentially enabling follow-on attacks.

Remediation

Users are advised to update to the latest version of Microsoft Edge. The security update is available through the Microsoft Edge Update mechanism.

Added: May 18, 2026, 6:33 PM

Updated: May 18, 2026, 6:33 PM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

2.5

exploitability

4.2

remediation

7.7

relevance

8.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

2.5

exploitability

4.2

remediation

7.7

relevance

8.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Microsoft Edge Security Feature Bypass Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Microsoft Edge

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating