High severity8.8NVD Advisory· Published May 18, 2026· Updated May 26, 2026
CVE-2026-45495
CVE-2026-45495
Description
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
Affected products
3cpe:2.3:a:microsoft:edge_chromium:*:*:*:*:-:*:*:*+ 1 more
- cpe:2.3:a:microsoft:edge_chromium:*:*:*:*:-:*:*:*range: <148.0.3967.70
- (no CPE)
Patches
Vulnerability mechanics
References
1- msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45495nvdVendor Advisory
News mentions
4- ⚡ Weekly Recap: Instagram Account Hacks, Android Zero-Day, GitHub Worm and MoreThe Hacker News · Jun 8, 2026
- Microsoft Edge Vulnerability Allows Remote Attackers to Execute Arbitrary CodeCyber Security News · Jun 5, 2026
- ZDI-26-331: (Pwn2Own) Microsoft Edge Feedback Log File Handling Directory Traversal Remote Code Execution VulnerabilityZero Day Initiative · Jun 4, 2026
- Microsoft Edge: Three CVEs Disclosed Together — RCE, Spoofing, and Security Feature BypassVypr Intelligence · May 18, 2026