Msrc Microsoft Edge vulnerabilities

CVE-2026-3942 [MEDIUM] Chromium: CVE-2026-3942 Incorrect security UI in PictureInPicture Chromium: CVE-2026-3942 Incorrect security UI in PictureInPicture Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which i

CVE-2026-3925 [MEDIUM] Chromium: CVE-2026-3925 Incorrect security UI in LookalikeChecks Chromium: CVE-2026-3925 Incorrect security UI in LookalikeChecks Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is

CVE-2026-3928 [MEDIUM] Chromium: CVE-2026-3928 Insufficient policy enforcement in Extensions Chromium: CVE-2026-3928 Insufficient policy enforcement in Extensions Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS)

CVE-2026-3935 [MEDIUM] Chromium: CVE-2026-3935 Incorrect security UI in WebAppInstalls Chromium: CVE-2026-3935 Incorrect security UI in WebAppInstalls Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is co

CVE-2026-3937 [MEDIUM] Chromium: CVE-2026-3937 Incorrect security UI in Downloads Chromium: CVE-2026-3937 Incorrect security UI in Downloads Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by

CVE-2026-3939 [MEDIUM] Chromium: CVE-2026-3939 Use after free in WebView Chromium: CVE-2026-3939 Use after free in WebView Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Ch

CVE-2026-3940 [MEDIUM] Chromium: CVE-2026-3940 Insufficient policy enforcement in DevTools Chromium: CVE-2026-3940 Insufficient policy enforcement in DevTools Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) whi

CVE-2026-32187 [MEDIUM] Microsoft Edge (Chromium-based) Defense in Depth Vulnerability Microsoft Edge (Chromium-based) Defense in Depth Vulnerability FAQ: According to the CVSS metric, the attack complexity is high (AC:H). What does that mean for this vulnerability? Successful exploitation of this vulnerability requires an attacker to manipulate system operations in a specific manner. FAQ: According to the CVSS metrics, successful exploitation of this vulnerability could lead to major loss of

CVE-2026-3938 [MEDIUM] Chromium: CVE-2026-3938 Insufficient policy enforcement in Clipboard Chromium: CVE-2026-3938 Insufficient policy enforcement in Clipboard Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) w

CVE-2026-3930 [MEDIUM] Chromium: CVE-2026-3930 Unsafe navigation in Navigation Chromium: CVE-2026-3930 Unsafe navigation in Navigation Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Micros

CVE-2026-3934 [MEDIUM] Chromium: CVE-2026-3934 Insufficient policy enforcement in ChromeDriver Chromium: CVE-2026-3934 Insufficient policy enforcement in ChromeDriver Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (

CVE-2026-3941 [MEDIUM] Chromium: CVE-2026-3941 Insufficient policy enforcement in DevTools Chromium: CVE-2026-3941 Insufficient policy enforcement in DevTools Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) whi

CVE-2026-3929 [LOW] Chromium: CVE-2026-3929 Side-channel information leakage in ResourceTiming Chromium: CVE-2026-3929 Side-channel information leakage in ResourceTiming Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Softwar

CVE-2026-3061 [CRITICAL] Chromium: CVE-2026-3061 Out of bounds read in Media Chromium: CVE-2026-3061 Out of bounds read in Media Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Ed

CVE-2026-3062 [CRITICAL] Chromium: CVE-2026-3062 Out of bounds read and write in Tint Chromium: CVE-2026-3062 Out of bounds read and write in Tint Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consum

CVE-2026-2313 [HIGH] Chromium: CVE-2026-2313 Use after free in CSS Chromium: CVE-2026-2313 Use after free in CSS Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-bas

CVE-2026-2650 [HIGH] Chromium: CVE-2026-2650 Heap buffer overflow in Media Chromium: CVE-2026-2650 Heap buffer overflow in Media Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 145.0.3800.70 02/20/2026 145.0.7632.109/110 FAQ: Why is t

CVE-2026-2314 [HIGH] Chromium: CVE-2026-2314 Heap buffer overflow in Codecs Chromium: CVE-2026-2314 Heap buffer overflow in Codecs Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft

CVE-2026-1862 [HIGH] Chromium: CVE-2026-1862 Type Confusion in V8 Chromium: CVE-2026-1862 Type Confusion in V8 Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 144.0.3719.115 02/05/2026 144.0.7559.132/.133 FAQ: Why is this Chrome CVE i

CVE-2026-2648 [HIGH] Chromium: CVE-2026-2648 Heap buffer overflow in PDFium Chromium: CVE-2026-2648 Heap buffer overflow in PDFium Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 145.0.3800.70 02/20/2026 145.0.7632.109/110 FAQ: Why is