CVE-2026-0391 — User Interface (UI) Misrepresentation of Critical Information in Microsoft Edge

CWE-451 — User Interface (UI) Misrepresentation of Critical Information6 documents5 sources

Severity

6.5MEDIUMCNA

No vector

EPSS

0.1%

top 78.60%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Edge Msrc Microsoft Edge

Timeline

PublishedFeb 5

Latest updateFeb 13

Description

Microsoft Edge (Chromium-based) for Android Spoofing Vulnerability User interface (ui) misrepresentation of critical information in Microsoft Edge for Android allows an unauthorized attacker to perform spoofing over a network.

Affected Packages2 packages

▶CVEListV5microsoft/microsoft_edge1.0.0.0 — 143.0.3650.66

▶msrcmsrc/microsoft_edge

🔴Vulnerability Details

CVEList

Microsoft Edge (Chromium-based) for Android Spoofing Vulnerability↗2026-02-05

▶

📋Vendor Advisories

Microsoft

Microsoft Edge (Chromium-based) for Android Spoofing Vulnerability↗2026-02-10

▶

🕵️Threat Intelligence

Sophos

February’s Patch Tuesday assumes battle stations↗2026-02-13

▶

Bleepingcomputer

Microsoft February 2026 Patch Tuesday fixes 6 zero-days, 58 flaws↗2026-02-10

▶

Wiz

CVE-2026-0391 Impact, Exploitability, and Mitigation Steps | Wiz↗

▶

Sophos

February’s Patch Tuesday assumes battle stations↗

▶