PatchSiren

PatchSiren cyber security CVE debrief

CVE-2026-58300 Microsoft CVE debrief

CVE-2026-58300 is an absolute path traversal vulnerability in Microsoft Edge for Android. An unauthorized attacker could exploit this vulnerability to disclose information locally. The vulnerability has a CVSS score of 6.2 and a severity of MEDIUM. This vulnerability affects users of Microsoft Edge for Android. The CVE record was published on 2026-07-03T21:17:05.023Z and has not been modified since then. The NVD entry is currently Analyzed.

Vendor
Microsoft
Product
Microsoft Edge (Chromium-based)
CVSS
MEDIUM 6.2
CISA KEV
Not listed in stored evidence
Original CVE published
2026-07-03
Original CVE updated
2026-07-07
Advisory published
2026-07-03
Advisory updated
2026-07-07

Who should care

Users of Microsoft Edge for Android, security teams, and system administrators should be aware of this vulnerability and apply the latest updates to mitigate this vulnerability. This vulnerability could potentially allow unauthorized disclosure of information locally.

Technical summary

CVE-2026-58300 is an absolute path traversal vulnerability in Microsoft Edge for Android. An unauthorized attacker could exploit this vulnerability to disclose information locally. The vulnerability has a CVSS score of 6.2 and a severity of MEDIUM. Affected users should apply the latest updates to Microsoft Edge for Android to mitigate this vulnerability.

Defensive priority

Apply the latest updates to Microsoft Edge for Android to mitigate this vulnerability. Verify the integrity of the system and monitor for suspicious activity.

Recommended defensive actions

  • Apply the latest updates to Microsoft Edge for Android
  • Monitor for suspicious activity
  • Verify the integrity of the system
  • Review compensating controls for exposed systems while remediation is scheduled and verified
  • Check relevant monitoring, detection, and logs for exposed assets that need extra review

Evidence notes

The CVE record was published on 2026-07-03T21:17:05.023Z and has not been modified since then. The NVD entry is currently Analyzed. This vulnerability affects Microsoft Edge for Android, allowing an unauthorized attacker to disclose information locally. The CVSS score is 6.2 and the severity is MEDIUM. Users should verify the integrity of the system and apply the latest updates to mitigate this vulnerability.

Official resources

AI-assisted PatchSiren debrief based on the supplied source corpus. The CVE record was published on 2026-07-03T21:17:05.023Z and has not been modified since then.