Improper Authorization in Microsoft Edge - CVE-2026-57983
Published: July 15, 2026
Microsoft Edge
Detailed vulnerability description
The vulnerability allows a remote attacker to bypass a security feature.
The vulnerability exists due to improper authorization in Microsoft Edge (Chromium-based) when rendering a specially crafted website. A remote attacker can host malicious content and trick a user into visiting it to bypass a security feature.
Successful exploitation requires deceptive or invisible form elements and two sequential taps by the user. An exploited vulnerability can affect resources beyond the security scope managed by the vulnerable component.