Microsoft Edge Security
The latest Microsoft Edge Security coverage — news, analysis, and updates from the WindowsNews.AI desk.
CVE-2026-7955: Chromium GPU Info Leak Threatens Edge Users – Patch Now
Google and Microsoft jointly disclosed CVE-2026-7955 on May 6, 2026, marking yet another Chrome-derived flaw now tracked in Microsoft Edge. The vulnerability, a medium-severity information leak in...
Patch Chromium Navigation flaw now: Edge sandbox-escape risk patched
Microsoft has issued a security advisory for a critical Chromium Navigation vulnerability tracked as CVE-2026-7967, which could allow an attacker to escape the browser sandbox and execute arbitrary...
Update Chrome/Edge now: CVE-2026-7988 WebRTC bug enables remote code execution
Google and Microsoft have both confirmed a critical vulnerability in the WebRTC component of Chromium-based browsers, tracked as CVE-2026-7988. The flaw, a type-confusion bug, was disclosed on May 6,...
Chrome 148 Patches CVE-2026-8010 SiteIsolation Bypass: Update Now
Chrome 148, released to the desktop stable channel on May 6, 2026, patches CVE-2026-8010, a validation flaw in the browser’s SiteIsolation feature that could let a compromised renderer process read...
CVE-2026-32187: Microsoft Edge's Defense-in-Depth Update Demands Immediate Attention
Microsoft has quietly patched CVE-2026-32187 in its Chromium-based Edge browser, classifying it as a "Defense in Depth" security update rather than a critical vulnerability. This distinction has...
CVE-2026-3917: Microsoft Edge Inherits Chromium's Use-After-Free Fix in Latest Security Update
Microsoft has confirmed that its Edge browser inherits a critical security fix from Chromium, addressing CVE-2026-3917, a use-after-free vulnerability in the browser's Agents component. This...
Microsoft Edge Patches CVE-2026-3929: Chromium's ResourceTiming Side-Channel Vulnerability Explained
Microsoft Edge has received a critical security update addressing CVE-2026-3929, a side-channel vulnerability in the ResourceTiming API that originated in the Chromium codebase. This fix, delivered...
CVE-2026-3936: Critical WebView Use-After-Free Vulnerability Threatens Microsoft Edge Security
Microsoft has confirmed that CVE-2026-3936, a high-severity use-after-free vulnerability in Chromium's WebView component, affects Microsoft Edge due to its Chromium-based architecture. This security...
Microsoft Edge Patches CVE-2026-3915 WebML Flaw After Inheriting Chromium RCE Bug
Microsoft Edge inherits a critical heap buffer overflow vulnerability from Chromium's WebML implementation, designated CVE-2026-3915. This security flaw affects the machine learning component in...
CVE-2026-3925 LookalikeChecks Security Flaw: How Microsoft Edge and Chrome Handle UI Trust Vulnerabilities
Microsoft's Security Update Guide now includes CVE-2026-3925, a medium-severity Chromium vulnerability affecting the LookalikeChecks security feature. This \"Incorrect security UI in...