CVE-2026-41107
published 2026-05-12CVE-2026-41107: External control of file name or path in Microsoft Edge (Chromium-based) allows an unauthorized attacker to disclose information over a network.
high7.4CVSS 3.1
AVNACLPRNUIRSCCHINAN
External control of file name or path in Microsoft Edge (Chromium-based) allows an unauthorized attacker to disclose information over a network.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | edge_chromium | < 148.0.3967.55 | 148.0.3967.55 |
| microsoft | microsoft_edge | >= 1.0.0.0 < 148.0.3967.55 | 148.0.3967.55 |