CVE-2025-29825 — User Interface (UI) Misrepresentation of Critical Information in Microsoft Edge

CWE-451 — User Interface (UI) Misrepresentation of Critical Information3 documents3 sources

Severity

6.5MEDIUMCNA

No vector

EPSS

3.1%

top 13.27%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Edge Msrc Microsoft Edge

Timeline

PublishedMay 2

Latest updateMay 13

Description

Microsoft Edge (Chromium-based) Spoofing Vulnerability User interface (ui) misrepresentation of critical information in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.

Affected Packages2 packages

▶CVEListV5microsoft/microsoft_edge1.0.0.0 — 136.0.3240.50

▶msrcmsrc/microsoft_edge

🔴Vulnerability Details

CVEList

Microsoft Edge (Chromium-based) Spoofing Vulnerability↗2025-05-02

▶

📋Vendor Advisories

Microsoft

Microsoft Edge (Chromium-based) Spoofing Vulnerability↗2025-05-13

▶

🕵️Threat Intelligence

Bleepingcomputer

Microsoft May 2025 Patch Tuesday fixes 5 exploited zero-days, 72 flaws↗2025-05-13

▶