Search criteria
3095 vulnerabilities found for edge by microsoft
CERTFR-2026-AVI-0197
Vulnerability from certfr_avis - Published: 2026-02-23 - Updated: 2026-02-23
De multiples vulnérabilités ont été découvertes dans Microsoft Edge. Elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
References
| Title | Publication Time | Tags | |||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Microsoft Edge versions ant\u00e9rieures \u00e0 145.0.3800.70",
"product": {
"name": "Edge",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2026-2648",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-2648"
},
{
"name": "CVE-2026-2650",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-2650"
},
{
"name": "CVE-2026-2649",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-2649"
}
],
"initial_release_date": "2026-02-23T00:00:00",
"last_revision_date": "2026-02-23T00:00:00",
"links": [],
"reference": "CERTFR-2026-AVI-0197",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2026-02-23T00:00:00.000000"
}
],
"risks": [
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Microsoft Edge. Elles permettent \u00e0 un attaquant de provoquer un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Microsoft Edge",
"vendor_advisories": [
{
"published_at": "2026-02-20",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2026-2649",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-2649"
},
{
"published_at": "2026-02-20",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2026-2648",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-2648"
},
{
"published_at": "2026-02-20",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2026-2650",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-2650"
}
]
}
CERTFR-2026-AVI-0190
Vulnerability from certfr_avis - Published: 2026-02-19 - Updated: 2026-02-19
De multiples vulnérabilités ont été découvertes dans Microsoft Edge. Elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
References
| Title | Publication Time | Tags | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Microsoft Edge versions ant\u00e9rieures \u00e0 145.0.3800.58",
"product": {
"name": "Edge",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2026-2314",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-2314"
},
{
"name": "CVE-2026-2322",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-2322"
},
{
"name": "CVE-2026-2316",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-2316"
},
{
"name": "CVE-2026-2319",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-2319"
}
],
"initial_release_date": "2026-02-19T00:00:00",
"last_revision_date": "2026-02-19T00:00:00",
"links": [],
"reference": "CERTFR-2026-AVI-0190",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2026-02-19T00:00:00.000000"
}
],
"risks": [
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Microsoft Edge. Elles permettent \u00e0 un attaquant de provoquer un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Microsoft Edge",
"vendor_advisories": [
{
"published_at": "2026-02-18",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2026-2316",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-2316"
},
{
"published_at": "2026-02-18",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2026-2322",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-2322"
},
{
"published_at": "2026-02-18",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2026-2314",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-2314"
},
{
"published_at": "2026-02-18",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2026-2319",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-2319"
}
]
}
CERTFR-2026-AVI-0184
Vulnerability from certfr_avis - Published: 2026-02-18 - Updated: 2026-02-18
De multiples vulnérabilités ont été découvertes dans Microsoft Edge. Elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur.
Microsoft indique que la vulnérabilité CVE-2026-2441 est activement exploitée.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
References
| Title | Publication Time | Tags | |||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Microsoft Edge versions ant\u00e9rieures \u00e0 145.0.3800.58",
"product": {
"name": "Edge",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2026-0102",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-0102"
},
{
"name": "CVE-2026-2318",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-2318"
},
{
"name": "CVE-2026-2317",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-2317"
},
{
"name": "CVE-2026-2323",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-2323"
},
{
"name": "CVE-2026-2441",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-2441"
},
{
"name": "CVE-2026-2320",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-2320"
},
{
"name": "CVE-2026-2313",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-2313"
}
],
"initial_release_date": "2026-02-18T00:00:00",
"last_revision_date": "2026-02-18T00:00:00",
"links": [],
"reference": "CERTFR-2026-AVI-0184",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2026-02-18T00:00:00.000000"
}
],
"risks": [
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Microsoft Edge. Elles permettent \u00e0 un attaquant de provoquer un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur.\n\nMicrosoft indique que la vuln\u00e9rabilit\u00e9 CVE-2026-2441 est activement exploit\u00e9e.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Microsoft Edge",
"vendor_advisories": [
{
"published_at": "2026-02-17",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2026-0102",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-0102"
},
{
"published_at": "2026-02-17",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2026-2317",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-2317"
},
{
"published_at": "2026-02-17",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2026-2313",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-2313"
},
{
"published_at": "2026-02-17",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2026-2318",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-2318"
},
{
"published_at": "2026-02-17",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2026-2323",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-2323"
},
{
"published_at": "2026-02-17",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2026-2441",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-2441"
},
{
"published_at": "2026-02-17",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2026-2320",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-2320"
}
]
}
CERTFR-2026-AVI-0134
Vulnerability from certfr_avis - Published: 2026-02-09 - Updated: 2026-02-09
Une vulnérabilité a été découverte dans Microsoft Edge. Elle permet à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Microsoft Edge versions ant\u00e9rieures \u00e0 144.0.3719.115",
"product": {
"name": "Edge",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2026-1862",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-1862"
}
],
"initial_release_date": "2026-02-09T00:00:00",
"last_revision_date": "2026-02-09T00:00:00",
"links": [],
"reference": "CERTFR-2026-AVI-0134",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2026-02-09T00:00:00.000000"
}
],
"risks": [
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "Une vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 d\u00e9couverte dans Microsoft Edge. Elle permet \u00e0 un attaquant de provoquer un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur.",
"title": "Vuln\u00e9rabilit\u00e9 dans Microsoft Edge",
"vendor_advisories": [
{
"published_at": "2026-02-06",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2026-1862",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-1862"
}
]
}
CERTFR-2026-AVI-0124
Vulnerability from certfr_avis - Published: 2026-02-06 - Updated: 2026-02-06
De multiples vulnérabilités ont été découvertes dans Microsoft Edge. Elles permettent à un attaquant de provoquer un contournement de la politique de sécurité et un problème de sécurité non spécifié par l'éditeur.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Microsoft Edge versions ant\u00e9rieures \u00e0 144.0.3719.115",
"product": {
"name": "Edge",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2026-1861",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-1861"
},
{
"name": "CVE-2026-0391",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-0391"
}
],
"initial_release_date": "2026-02-06T00:00:00",
"last_revision_date": "2026-02-06T00:00:00",
"links": [],
"reference": "CERTFR-2026-AVI-0124",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2026-02-06T00:00:00.000000"
}
],
"risks": [
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Microsoft Edge. Elles permettent \u00e0 un attaquant de provoquer un contournement de la politique de s\u00e9curit\u00e9 et un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Microsoft Edge",
"vendor_advisories": [
{
"published_at": "2026-02-05",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2026-0391",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-0391"
},
{
"published_at": "2026-02-05",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2026-1861",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-1861"
}
]
}
CERTFR-2026-AVI-0105
Vulnerability from certfr_avis - Published: 2026-01-30 - Updated: 2026-01-30
Une vulnérabilité a été découverte dans Microsoft Edge. Elle permet à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Microsoft Edge versions ant\u00e9rieures \u00e0 144.0.3719.104",
"product": {
"name": "Edge",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2026-1504",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-1504"
}
],
"initial_release_date": "2026-01-30T00:00:00",
"last_revision_date": "2026-01-30T00:00:00",
"links": [],
"reference": "CERTFR-2026-AVI-0105",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2026-01-30T00:00:00.000000"
}
],
"risks": [
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "Une vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 d\u00e9couverte dans Microsoft Edge. Elle permet \u00e0 un attaquant de provoquer un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur.",
"title": "Vuln\u00e9rabilit\u00e9 dans Microsoft Edge",
"vendor_advisories": [
{
"published_at": "2026-01-30",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2026-1504",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-1504"
}
]
}
CERTFR-2026-AVI-0084
Vulnerability from certfr_avis - Published: 2026-01-26 - Updated: 2026-01-26
Une vulnérabilité a été découverte dans Microsoft Edge. Elle permet à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Microsoft Edge versions ant\u00e9rieures \u00e0 144.0.3719.92",
"product": {
"name": "Edge",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2026-1220",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-1220"
}
],
"initial_release_date": "2026-01-26T00:00:00",
"last_revision_date": "2026-01-26T00:00:00",
"links": [],
"reference": "CERTFR-2026-AVI-0084",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2026-01-26T00:00:00.000000"
}
],
"risks": [
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "Une vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 d\u00e9couverte dans Microsoft Edge. Elle permet \u00e0 un attaquant de provoquer un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur.",
"title": "Vuln\u00e9rabilit\u00e9 dans Microsoft Edge",
"vendor_advisories": [
{
"published_at": "2026-01-23",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2026-1220",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-1220"
}
]
}
CERTFR-2026-AVI-0063
Vulnerability from certfr_avis - Published: 2026-01-19 - Updated: 2026-01-19
De multiples vulnérabilités ont été découvertes dans Microsoft Edge. Elles permettent à un attaquant de provoquer un contournement de la politique de sécurité et un problème de sécurité non spécifié par l'éditeur.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
References
| Title | Publication Time | Tags | |||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Microsoft Edge versions ant\u00e9rieures \u00e0 144.0.3719.82",
"product": {
"name": "Edge",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2026-0904",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-0904"
},
{
"name": "CVE-2026-0903",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-0903"
},
{
"name": "CVE-2026-21223",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-21223"
},
{
"name": "CVE-2026-0899",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-0899"
},
{
"name": "CVE-2026-0901",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-0901"
},
{
"name": "CVE-2026-0908",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-0908"
},
{
"name": "CVE-2026-0906",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-0906"
},
{
"name": "CVE-2026-0900",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-0900"
},
{
"name": "CVE-2026-0905",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-0905"
},
{
"name": "CVE-2026-0902",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-0902"
},
{
"name": "CVE-2026-0907",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-0907"
}
],
"initial_release_date": "2026-01-19T00:00:00",
"last_revision_date": "2026-01-19T00:00:00",
"links": [],
"reference": "CERTFR-2026-AVI-0063",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2026-01-19T00:00:00.000000"
}
],
"risks": [
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Microsoft Edge. Elles permettent \u00e0 un attaquant de provoquer un contournement de la politique de s\u00e9curit\u00e9 et un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Microsoft Edge",
"vendor_advisories": [
{
"published_at": "2026-01-16",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2026-0899",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-0899"
},
{
"published_at": "2026-01-16",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2026-0900",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-0900"
},
{
"published_at": "2026-01-16",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2026-21223",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-21223"
},
{
"published_at": "2026-01-16",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2026-0903",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-0903"
},
{
"published_at": "2026-01-16",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2026-0906",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-0906"
},
{
"published_at": "2026-01-16",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2026-0907",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-0907"
},
{
"published_at": "2026-01-16",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2026-0908",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-0908"
},
{
"published_at": "2026-01-16",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2026-0905",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-0905"
},
{
"published_at": "2026-01-16",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2026-0901",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-0901"
},
{
"published_at": "2026-01-16",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2026-0904",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-0904"
},
{
"published_at": "2026-01-16",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2026-0902",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-0902"
}
]
}
CERTFR-2026-AVI-0025
Vulnerability from certfr_avis - Published: 2026-01-12 - Updated: 2026-01-12
Une vulnérabilité a été découverte dans Microsoft Edge. Elle permet à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Microsoft Edge versions ant\u00e9rieures \u00e0 143.0.3650.139",
"product": {
"name": "Edge",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2026-0628",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-0628"
}
],
"initial_release_date": "2026-01-12T00:00:00",
"last_revision_date": "2026-01-12T00:00:00",
"links": [],
"reference": "CERTFR-2026-AVI-0025",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2026-01-12T00:00:00.000000"
}
],
"risks": [
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "Une vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 d\u00e9couverte dans Microsoft Edge. Elle permet \u00e0 un attaquant de provoquer un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur.",
"title": "Vuln\u00e9rabilit\u00e9 dans Microsoft Edge",
"vendor_advisories": [
{
"published_at": "2026-01-09",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2026-0628",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-0628"
}
]
}
CERTFR-2025-AVI-1124
Vulnerability from certfr_avis - Published: 2025-12-19 - Updated: 2025-12-19
De multiples vulnérabilités ont été découvertes dans Microsoft Edge. Elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
References
| Title | Publication Time | Tags | |||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Microsoft Edge versions ant\u00e9rieures \u00e0 143.0.3650.96",
"product": {
"name": "Edge",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft Edge pour Android versions ant\u00e9rieures \u00e0 143.0.3650.88",
"product": {
"name": "Edge",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2025-14766",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-14766"
},
{
"name": "CVE-2025-14765",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-14765"
},
{
"name": "CVE-2025-65046",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-65046"
}
],
"initial_release_date": "2025-12-19T00:00:00",
"last_revision_date": "2025-12-19T00:00:00",
"links": [],
"reference": "CERTFR-2025-AVI-1124",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-12-19T00:00:00.000000"
}
],
"risks": [
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Microsoft Edge. Elles permettent \u00e0 un attaquant de provoquer un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Microsoft Edge",
"vendor_advisories": [
{
"published_at": "2025-12-18",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2025-65046",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-65046"
},
{
"published_at": "2025-12-18",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2025-14765",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-14765"
},
{
"published_at": "2025-12-18",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2025-14766",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-14766"
}
]
}
CERTFR-2025-AVI-1103
Vulnerability from certfr_avis - Published: 2025-12-12 - Updated: 2025-12-15
De multiples vulnérabilités ont été découvertes dans Microsoft Edge. Elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
References
| Title | Publication Time | Tags | |||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Microsoft Edge versions ant\u00e9rieures \u00e0 143.0.3650.80",
"product": {
"name": "Edge",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2025-14372",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-14372"
},
{
"name": "CVE-2025-14373",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-14373"
},
{
"name": "CVE-2025-14174",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-14174"
}
],
"initial_release_date": "2025-12-12T00:00:00",
"last_revision_date": "2025-12-15T00:00:00",
"links": [],
"reference": "CERTFR-2025-AVI-1103",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-12-12T00:00:00.000000"
},
{
"description": "Ajout de la vuln\u00e9rabilit\u00e9 CVE-2025-14174",
"revision_date": "2025-12-15T00:00:00.000000"
}
],
"risks": [
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Microsoft Edge. Elles permettent \u00e0 un attaquant de provoquer un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Microsoft Edge",
"vendor_advisories": [
{
"published_at": "2025-12-11",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2025-14372",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-14372"
},
{
"published_at": "2025-12-11",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2025-14373",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-14373"
},
{
"published_at": "2025-12-11",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-14174",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-14174"
}
]
}
CERTFR-2025-AVI-1069
Vulnerability from certfr_avis - Published: 2025-12-05 - Updated: 2025-12-05
De multiples vulnérabilités ont été découvertes dans Microsoft Edge. Elles permettent à un attaquant de provoquer un contournement de la politique de sécurité et un problème de sécurité non spécifié par l'éditeur.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
References
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Microsoft Edge versions ant\u00e9rieures \u00e0 143.0.3650.66",
"product": {
"name": "Edge",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2025-13720",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-13720"
},
{
"name": "CVE-2025-13638",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-13638"
},
{
"name": "CVE-2025-13633",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-13633"
},
{
"name": "CVE-2025-13636",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-13636"
},
{
"name": "CVE-2025-13637",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-13637"
},
{
"name": "CVE-2025-13630",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-13630"
},
{
"name": "CVE-2025-13634",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-13634"
},
{
"name": "CVE-2025-13632",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-13632"
},
{
"name": "CVE-2025-13640",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-13640"
},
{
"name": "CVE-2025-13635",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-13635"
},
{
"name": "CVE-2025-13639",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-13639"
},
{
"name": "CVE-2025-13721",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-13721"
},
{
"name": "CVE-2025-13631",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-13631"
},
{
"name": "CVE-2025-62223",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-62223"
}
],
"initial_release_date": "2025-12-05T00:00:00",
"last_revision_date": "2025-12-05T00:00:00",
"links": [],
"reference": "CERTFR-2025-AVI-1069",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-12-05T00:00:00.000000"
}
],
"risks": [
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Microsoft Edge. Elles permettent \u00e0 un attaquant de provoquer un contournement de la politique de s\u00e9curit\u00e9 et un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Microsoft Edge",
"vendor_advisories": [
{
"published_at": "2025-12-04",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2025-13635",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-13635"
},
{
"published_at": "2025-12-04",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2025-13638",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-13638"
},
{
"published_at": "2025-12-04",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2025-13720",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-13720"
},
{
"published_at": "2025-12-04",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2025-13639",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-13639"
},
{
"published_at": "2025-12-04",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2025-62223",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-62223"
},
{
"published_at": "2025-12-04",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2025-13634",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-13634"
},
{
"published_at": "2025-12-04",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2025-13630",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-13630"
},
{
"published_at": "2025-12-04",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2025-13640",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-13640"
},
{
"published_at": "2025-12-04",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2025-13631",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-13631"
},
{
"published_at": "2025-12-04",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2025-13721",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-13721"
},
{
"published_at": "2025-12-04",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2025-13636",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-13636"
},
{
"published_at": "2025-12-04",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2025-13633",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-13633"
},
{
"published_at": "2025-12-04",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2025-13637",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-13637"
},
{
"published_at": "2025-12-04",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2025-13632",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-13632"
}
]
}
CERTFR-2025-AVI-0994
Vulnerability from certfr_avis - Published: 2025-11-12 - Updated: 2025-11-12
De multiples vulnérabilités ont été découvertes dans Microsoft Edge. Elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Microsoft Edge versions ant\u00e9rieures \u00e0 142.0.3595.66",
"product": {
"name": "Edge",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2025-12729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-12729"
},
{
"name": "CVE-2025-12728",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-12728"
}
],
"initial_release_date": "2025-11-12T00:00:00",
"last_revision_date": "2025-11-12T00:00:00",
"links": [],
"reference": "CERTFR-2025-AVI-0994",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-11-12T00:00:00.000000"
}
],
"risks": [
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Microsoft Edge. Elles permettent \u00e0 un attaquant de provoquer un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Microsoft Edge",
"vendor_advisories": [
{
"published_at": "2025-11-10",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2025-12728",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-12728"
},
{
"published_at": "2025-11-10",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2025-12729",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-12729"
}
]
}
CERTFR-2025-AVI-0976
Vulnerability from certfr_avis - Published: 2025-11-07 - Updated: 2025-11-07
De multiples vulnérabilités ont été découvertes dans Microsoft Edge. Elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
References
| Title | Publication Time | Tags | |||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Microsoft Edge versions ant\u00e9rieures \u00e0 142.0.3595.65",
"product": {
"name": "Edge",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2025-12726",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-12726"
},
{
"name": "CVE-2025-12725",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-12725"
},
{
"name": "CVE-2025-12727",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-12727"
}
],
"initial_release_date": "2025-11-07T00:00:00",
"last_revision_date": "2025-11-07T00:00:00",
"links": [],
"reference": "CERTFR-2025-AVI-0976",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-11-07T00:00:00.000000"
}
],
"risks": [
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Microsoft Edge. Elles permettent \u00e0 un attaquant de provoquer un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Microsoft Edge",
"vendor_advisories": [
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2025-12726",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-12726"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2025-12727",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-12727"
},
{
"published_at": "2025-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2025-12725",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-12725"
}
]
}
CERTFR-2025-AVI-0898
Vulnerability from certfr_avis - Published: 2025-10-20 - Updated: 2025-10-20
Une vulnérabilité a été découverte dans Microsoft Edge. Elle permet à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Microsoft Edge versions ant\u00e9rieures \u00e0 141.0.3537.85",
"product": {
"name": "Edge",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2025-11756",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-11756"
}
],
"initial_release_date": "2025-10-20T00:00:00",
"last_revision_date": "2025-10-20T00:00:00",
"links": [],
"reference": "CERTFR-2025-AVI-0898",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-10-20T00:00:00.000000"
}
],
"risks": [
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "Une vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 d\u00e9couverte dans Microsoft Edge. Elle permet \u00e0 un attaquant de provoquer un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur.",
"title": "Vuln\u00e9rabilit\u00e9 dans Microsoft Edge",
"vendor_advisories": [
{
"published_at": "2025-10-17",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Edge CVE-2025-11756",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-11756"
}
]
}
FKIE_CVE-2025-62224
Vulnerability from fkie_nvd - Published: 2026-01-07 23:15 - Updated: 2026-02-02 19:21
Severity ?
5.5 (Medium) - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L
3.5 (Low) - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:L
3.5 (Low) - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:L
Summary
User interface (ui) misrepresentation of critical information in Microsoft Edge for Android allows an authorized attacker to perform spoofing over a network.
References
| URL | Tags | ||
|---|---|---|---|
| secure@microsoft.com | https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-62224 | Vendor Advisory |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:edge:*:*:*:*:*:android:*:*",
"matchCriteriaId": "2B60E038-8E8F-4D8B-994D-5819A268B1B6",
"versionEndExcluding": "143.0.3650.97",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "User interface (ui) misrepresentation of critical information in Microsoft Edge for Android allows an authorized attacker to perform spoofing over a network."
}
],
"id": "CVE-2025-62224",
"lastModified": "2026-02-02T19:21:20.177",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"exploitabilityScore": 2.1,
"impactScore": 3.4,
"source": "secure@microsoft.com",
"type": "Secondary"
},
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 3.5,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"exploitabilityScore": 2.1,
"impactScore": 1.4,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2026-01-07T23:15:44.407",
"references": [
{
"source": "secure@microsoft.com",
"tags": [
"Vendor Advisory"
],
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-62224"
}
],
"sourceIdentifier": "secure@microsoft.com",
"vulnStatus": "Analyzed",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-451"
}
],
"source": "secure@microsoft.com",
"type": "Secondary"
}
]
}
CVE-2025-62224 (GCVE-0-2025-62224)
Vulnerability from cvelistv5 – Published: 2026-01-07 22:54 – Updated: 2026-02-20 15:59
VLAI?
Title
Microsoft Edge (Chromium-based) for Android Spoofing Vulnerability
Summary
User interface (ui) misrepresentation of critical information in Microsoft Edge for Android allows an authorized attacker to perform spoofing over a network.
Severity ?
CWE
- CWE-451 - User Interface (UI) Misrepresentation of Critical Information
Assigner
References
| URL | Tags | ||||
|---|---|---|---|---|---|
|
|||||
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Microsoft | Microsoft Edge for Android |
Affected:
1.0.0 , < 143.0.3650.97
(custom)
|
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-62224",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-01-08T15:09:11.917575Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-01-08T18:17:31.322Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "Microsoft Edge for Android",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "143.0.3650.97",
"status": "affected",
"version": "1.0.0",
"versionType": "custom"
}
]
}
],
"cpeApplicability": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:edge:*:*:*:*:*:android:*:*",
"versionEndExcluding": "143.0.3650.97",
"versionStartIncluding": "1.0.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"datePublic": "2026-01-07T08:00:00.000Z",
"descriptions": [
{
"lang": "en-US",
"value": "User interface (ui) misrepresentation of critical information in Microsoft Edge for Android allows an authorized attacker to perform spoofing over a network."
}
],
"metrics": [
{
"cvssV3_1": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C",
"version": "3.1"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en-US",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-451",
"description": "CWE-451: User Interface (UI) Misrepresentation of Critical Information",
"lang": "en-US",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-02-20T15:59:19.767Z",
"orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
"shortName": "microsoft"
},
"references": [
{
"name": "Microsoft Edge (Chromium-based) for Android Spoofing Vulnerability",
"tags": [
"vendor-advisory",
"patch"
],
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-62224"
}
],
"title": "Microsoft Edge (Chromium-based) for Android Spoofing Vulnerability"
}
},
"cveMetadata": {
"assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
"assignerShortName": "microsoft",
"cveId": "CVE-2025-62224",
"datePublished": "2026-01-07T22:54:54.800Z",
"dateReserved": "2025-10-08T20:10:09.350Z",
"dateUpdated": "2026-02-20T15:59:19.767Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
CVE-2025-62224 (GCVE-0-2025-62224)
Vulnerability from nvd – Published: 2026-01-07 22:54 – Updated: 2026-02-20 15:59
VLAI?
Title
Microsoft Edge (Chromium-based) for Android Spoofing Vulnerability
Summary
User interface (ui) misrepresentation of critical information in Microsoft Edge for Android allows an authorized attacker to perform spoofing over a network.
Severity ?
CWE
- CWE-451 - User Interface (UI) Misrepresentation of Critical Information
Assigner
References
| URL | Tags | ||||
|---|---|---|---|---|---|
|
|||||
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Microsoft | Microsoft Edge for Android |
Affected:
1.0.0 , < 143.0.3650.97
(custom)
|
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-62224",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-01-08T15:09:11.917575Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-01-08T18:17:31.322Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "Microsoft Edge for Android",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "143.0.3650.97",
"status": "affected",
"version": "1.0.0",
"versionType": "custom"
}
]
}
],
"cpeApplicability": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:edge:*:*:*:*:*:android:*:*",
"versionEndExcluding": "143.0.3650.97",
"versionStartIncluding": "1.0.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"datePublic": "2026-01-07T08:00:00.000Z",
"descriptions": [
{
"lang": "en-US",
"value": "User interface (ui) misrepresentation of critical information in Microsoft Edge for Android allows an authorized attacker to perform spoofing over a network."
}
],
"metrics": [
{
"cvssV3_1": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C",
"version": "3.1"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en-US",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-451",
"description": "CWE-451: User Interface (UI) Misrepresentation of Critical Information",
"lang": "en-US",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-02-20T15:59:19.767Z",
"orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
"shortName": "microsoft"
},
"references": [
{
"name": "Microsoft Edge (Chromium-based) for Android Spoofing Vulnerability",
"tags": [
"vendor-advisory",
"patch"
],
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-62224"
}
],
"title": "Microsoft Edge (Chromium-based) for Android Spoofing Vulnerability"
}
},
"cveMetadata": {
"assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
"assignerShortName": "microsoft",
"cveId": "CVE-2025-62224",
"datePublished": "2026-01-07T22:54:54.800Z",
"dateReserved": "2025-10-08T20:10:09.350Z",
"dateUpdated": "2026-02-20T15:59:19.767Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}