Zero Day MonitorZDM
DashboardVulnerabilitiesTrendingZero-DaysNewsAbout
Login
ImpressumPrivacy Policy
Zero Day Monitor © 2026
2648 articles · 173272 vulns · 37/41 feeds (7d)
← Back to list
7.2
CVE-2026-58298EXPLOITEDPATCHED
microsoft · edge_chromium

Microsoft Edge (Chromium-based) Spoofing Vulnerability

Description

Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.

Affected Products

VendorProductVersions
microsoftedge_chromium1.0.0.0

Also Affects

Downstream vendors/products affected by this vulnerability

VendorProductSourceConfidence
microsoftedgecert_advisory90%

References

  • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-58298(vendor-advisory, patch)

Related News (3 articles)

Tier B
BSI Advisories2d ago
[NEU] [hoch] Microsoft Edge: Mehrere Schwachstellen
→ No new info (linked only)
Tier C
VulDB5d ago
CVE-2026-58298 | Microsoft Edge up to 149.0.4022.68 cross site scripting
→ No new info (linked only)
Tier A
Microsoft MSRC5d ago
CVE-2026-58298 Microsoft Edge (Chromium-based) Spoofing Vulnerability
→ No new info (linked only)
CVSS 3.17.2 HIGH
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N/E:U/RL:O/RC:C
CISA KEV❌ No
Actively exploited✅ Yes
Patch available
150.0.4078.48
CWECWE-79
PublishedJul 3, 2026
Last enriched5d agov3
Trending Score45
Source articles3
Independent3
Info Completeness10/14
Missing: epss, kev, iocs, mitre_attack

Community Vote

0
Login to vote
0 upvotes0 downvotes
No votes yet

Related CVEs (5)

HIGHCVE-2026-50656EXP
Microsoft Defender Elevation of Privilege Vulnerability
Trending: 92
HIGHCVE-2026-33825EXPKEV
Microsoft Defender Elevation of Privilege Vulnerability
Trending: 61
HIGHCVE-2026-45659EXPKEV
Microsoft SharePoint Remote Code Execution Vulnerability
Trending: 59
HIGHCVE-2026-58295EXP
Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability
Trending: 45
CRITICALCVE-2026-58289EXP
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
Trending: 44

Pin to Dashboard

Verification

State: verified
Confidence: 0%

Vulnerability Timeline

CVE Published
Jul 3, 2026
Discovered by ZDM
Jul 3, 2026
Updated: description, exploitAvailable, activelyExploited
Jul 3, 2026
Updated: affectedVersions
Jul 4, 2026
Actively Exploited
Jul 8, 2026
Exploit Available
Jul 8, 2026
Patch Available
Jul 8, 2026

Version History

v3
Last enriched 5d ago
v3Tier C5d ago

Updated severity to CRITICAL and affected versions to include 149.0.4022.68, with no patch available.

affectedVersions
via VulDB
v2Tier A5d ago

Added a detailed description of the vulnerability and marked it as actively exploited with an exploit available.

descriptionexploitAvailableactivelyExploited
via Microsoft MSRC
v15d ago

Initial creation