PatchSiren cyber security CVE debrief
CVE-2026-58300 Microsoft CVE debrief
CVE-2026-58300 is an absolute path traversal vulnerability in Microsoft Edge for Android. An unauthorized attacker could exploit this vulnerability to disclose information locally. The vulnerability has a CVSS score of 6.2 and a severity of MEDIUM. This vulnerability affects users of Microsoft Edge for Android. The CVE record was published on 2026-07-03T21:17:05.023Z and has not been modified since then. The NVD entry is currently Analyzed.
- Vendor
- Microsoft
- Product
- Microsoft Edge (Chromium-based)
- CVSS
- MEDIUM 6.2
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-07-03
- Original CVE updated
- 2026-07-07
- Advisory published
- 2026-07-03
- Advisory updated
- 2026-07-07
Who should care
Users of Microsoft Edge for Android, security teams, and system administrators should be aware of this vulnerability and apply the latest updates to mitigate this vulnerability. This vulnerability could potentially allow unauthorized disclosure of information locally.
Technical summary
CVE-2026-58300 is an absolute path traversal vulnerability in Microsoft Edge for Android. An unauthorized attacker could exploit this vulnerability to disclose information locally. The vulnerability has a CVSS score of 6.2 and a severity of MEDIUM. Affected users should apply the latest updates to Microsoft Edge for Android to mitigate this vulnerability.
Defensive priority
Apply the latest updates to Microsoft Edge for Android to mitigate this vulnerability. Verify the integrity of the system and monitor for suspicious activity.
Recommended defensive actions
- Apply the latest updates to Microsoft Edge for Android
- Monitor for suspicious activity
- Verify the integrity of the system
- Review compensating controls for exposed systems while remediation is scheduled and verified
- Check relevant monitoring, detection, and logs for exposed assets that need extra review
Evidence notes
The CVE record was published on 2026-07-03T21:17:05.023Z and has not been modified since then. The NVD entry is currently Analyzed. This vulnerability affects Microsoft Edge for Android, allowing an unauthorized attacker to disclose information locally. The CVSS score is 6.2 and the severity is MEDIUM. Users should verify the integrity of the system and apply the latest updates to mitigate this vulnerability.
Official resources
-
CVE-2026-58300 CVE record
CVE.org
-
CVE-2026-58300 NVD detail
NVD
-
Source item URL
nvd_modified
-
Mitigation or vendor reference
[email protected] - Vendor Advisory
AI-assisted PatchSiren debrief based on the supplied source corpus. The CVE record was published on 2026-07-03T21:17:05.023Z and has not been modified since then.