—–BEGIN PGP SIGNED MESSAGE—–

Hash: SHA256

Remote Code Execution Vulnerability in Microsoft Edge (Chromium-based)

Indian – Computer Emergency Response Team (https://www.cert-in.org.in)

Severity Rating: HIGH

Software Affected

Microsoft Edge versions prior to 149.0.4022.68

Overview

A vulnerability has been reported in Microsoft Edge, which could allow a remote attacker to execute arbitrary code on the targeted system.

Target Audience:

All end user organizations and individuals using Microsoft Edge.

Risk Assessment:

High risk of unauthorized access, data manipulation.

Impact Assessment:

Potential for remote code execution, complete system compromise.

Description

Microsoft Edge is a web browser developed by Microsoft using the chromium engine, offering fast performance, enhanced Security and compatibility with modern web standards while integrating with Microsoft services.

A remote code execution vulnerability exists in Microsoft Edge due to Use After Free. A remote attacker could exploit this vulnerability by persuading a victim to visit a specially crafted web page.

Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the targeted system.

Solution

Apply appropriate fix/patches as mentioned:

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-50521

Vendor Information

Microsoft

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-50521

References

Microsoft

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-50521

CVE Name

CVE-2026-50521

– —

Thanks and Regards,

CERT-In

Incident Response Help Desk

e-mail: incident@cert-in.org.in

Phone: +91-11-22902657

Toll Free Number: 1800-11-4949

Toll Free Fax : 1800-11-6969

Web: http://www.cert-in.org.in

PGP Fingerprint: A768 083E 4475 5725 B81A A379 2156 C0C0 B620 D0B4

PGP Key information:

https://www.cert-in.org.in/s2cMainServlet?pageid=CONTACTUS

Postal address:

Indian Computer Emergency Response Team (CERT-In)

Ministry of Electronics and Information Technology

Government of India

Electronics Niketan

6, C.G.O. Complex

New Delhi-110 003

—–BEGIN PGP SIGNATURE—–

iQIzBAEBCAAdFiEE6r4Iam/Ey0c/KakL3jCgcSdcys8FAmpD0/MACgkQ3jCgcSdc

ys/NCw/+I5COEnkUEx9w9+yQgib74jgUu1tEjBRTFGvye8t++ND3V+xCm8+87DFY

GiTWWDM4CdW4keX83+fWfKpA14B5EBEAg655ZKCtVBJ/k/M6+fG6btxVWGzWzPeT

mXd6mqJYPwFGn+QbQH5x5beueNfwCXLsJVHa0hKiRDgWHfdNwVAZvVrPY+gr0yWZ

iXhsGHQCXRGf3kOVbRZ5iSGcPm8x20RYErbrnp4qkH21b9cL49FtZKOdR5jWpFdL

YwCPiPxvfZLzM/C3OI0kRR6OL1HGHqZ2YwO0udr8e5A+9HfWnNXlQzZ2Z89Gf99m

3Sp2TKgw5Ghh/t4+GfuV+M/qqmJPsSfPjUkNQSHXBjjT3MJCcnigKeNVg/qNdIFZ

klemcSJ+uMaO1/5J7wfHV2ZCNQUq6Hg99yWbd0PIEM+H8JquIy7dVvt0KGUINdzS

xyHRk94tlnxs15ztJVlJ7OL4loFKZ6UZDodpo9yKAQX7vTU/9KBGcpcwYuXxRwCd

OyWL19KVpSOWIP75sbn7j5QQS2fONwiAfpqt28Rz8rYyG+Z/G+JZQCjO46Of6HOV

kKtCvONJ7heAviQHvYujQo1uIRSUF1wj8krNwCCrA1qJFSQC+o5zTQyrU3/nXUMu

gNzilNBC3CiiSlYjd+tFtKDuMQtBeO+kK4qIC6eEca+85gxl75c=

=PpD6

—–END PGP SIGNATURE—–