CVE-2025-21262 — User Interface (UI) Misrepresentation of Critical Information in Microsoft Edge

CWE-451 — User Interface (UI) Misrepresentation of Critical Information4 documents4 sources

Severity

5.4MEDIUMCNA

No vector

EPSS

0.2%

top 58.51%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Edge Msrc Microsoft Edge

Timeline

PublishedJan 24

Latest updateJan 25

Description

Microsoft Edge (Chromium-based) Spoofing Vulnerability User Interface (UI) Misrepresentation of Critical Information in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network

Affected Packages2 packages

▶CVEListV5microsoft/microsoft_edge1.0.0.0 — 132.0.2957.127

▶msrcmsrc/microsoft_edge

🔴Vulnerability Details

GHSA

GHSA-5h9h-53mh-jpcv: Microsoft Edge (Chromium-based) Spoofing Vulnerability↗2025-01-25

▶

CVEList

Microsoft Edge (Chromium-based) Spoofing Vulnerability↗2025-01-24

▶

📋Vendor Advisories

Microsoft

Microsoft Edge (Chromium-based) Spoofing Vulnerability↗2025-01-14

▶