{"id":13397,"date":"2026-06-05T10:04:08","date_gmt":"2026-06-05T10:04:08","guid":{"rendered":"https:\/\/serisec.com\/index.php\/2026\/06\/05\/microsoft-edge-vulnerability-allows-remote-attackers-to-execute-arbitrary-code\/"},"modified":"2026-06-05T10:04:08","modified_gmt":"2026-06-05T10:04:08","slug":"microsoft-edge-vulnerability-allows-remote-attackers-to-execute-arbitrary-code","status":"publish","type":"post","link":"https:\/\/serisec.com\/index.php\/2026\/06\/05\/microsoft-edge-vulnerability-allows-remote-attackers-to-execute-arbitrary-code\/","title":{"rendered":"Microsoft Edge Vulnerability Allows Remote Attackers to Execute Arbitrary Code"},"content":{"rendered":"<p>    Microsoft Edge Vulnerability Allows Remote Attackers to Execute Arbitrary Code<br \/>\n \t<BR><br \/>\n<BR><\/BR><br \/>\n    <!-- no image --><br \/>\n \t<BR><br \/>\n<BR><\/BR><\/p>\n<div>\n<p class=\"wp-block-paragraph\">Microsoft has released a security update addressing a critical vulnerability in Microsoft Edge that could allow remote attackers to execute arbitrary code on vulnerable systems.<\/p>\n<p class=\"wp-block-paragraph\">Tracked as CVE-2026-45495 and reported by Orange Tsai of DEVCORE, the flaw carries a CVSS v3 score of 7.5 and requires user interaction, for example, visiting a malicious webpage or opening a crafted file, to be exploited.<\/p>\n<p class=\"wp-block-paragraph\">The vulnerability stems from improper validation during Edge\u2019s processing of feedback log files. Specifically, Edge failed to properly validate a user-supplied file path before performing file operations.<\/p>\n<p class=\"wp-block-paragraph\">An attacker who can trick a user into opening a malicious file or visiting a crafted page could exploit this flaw alongside other bugs to run code in the logged-in user\u2019s context.<\/p>\n<p class=\"wp-block-paragraph\">Because the exploit runs with the current user\u2019s privileges, the impact ranges from data theft and browser profile compromise to local persistence or lateral movement where higher privileges exist.<\/p>\n<p class=\"wp-block-paragraph\"><a href=\"https:\/\/www.zerodayinitiative.com\/advisories\/ZDI-26-331\/\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">According to the public advisory<\/a>, the root cause is a path-validation defect in feedback log handling. By supplying a specially crafted path, an attacker can influence file operations in an unintended location.<\/p>\n<p class=\"wp-block-paragraph\">While Microsoft\u2019s advisory does not publish exploit code, the vulnerability\u2019s characteristics (file-access path manipulation plus the need for user interaction) make social-engineering vectors malicious attachments, drive-by pages, or poisoned downloads\u2014likely delivery mechanisms.<\/p>\n<p class=\"wp-block-paragraph\">Microsoft\u2019s release also coordinated updates for two additional Edge flaws discovered by the same researcher group:<\/p>\n<ul class=\"wp-block-list\">\n<li>\n<a href=\"https:\/\/www.zerodayinitiative.com\/advisories\/ZDI-26-330\/\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">CVE-2026-45494 (CVSS 5.0)<\/a>: A navigation-handling weakness that can enable cross-origin script injection; user interaction required.<\/li>\n<li>\n<a href=\"https:\/\/www.zerodayinitiative.com\/advisories\/ZDI-26-329\/\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">CVE-2026-45492 (CVSS 4.3)<\/a>: Insufficient origin validation in cross-device managed sign-in, which can expose restricted functionality and be chained with other issues.<\/li>\n<\/ul>\n<p class=\"wp-block-paragraph\">Microsoft has published fixes and urged users and administrators to apply updates immediately. Recommended actions:<\/p>\n<ul class=\"wp-block-list\">\n<li>Update Edge to the latest stable release via Microsoft Update or the Edge About page.<\/li>\n<li>Apply operating system patches if prompted by Microsoft Update.<\/li>\n<li>Block or scrutinize untrusted attachments and links in email and messaging apps.<\/li>\n<li>Use least-privilege accounts for daily activities to limit exploit impact.<\/li>\n<li>Monitor endpoint detection systems for unusual file operations or new persistence mechanisms linked to browser processes.<\/li>\n<\/ul>\n<p class=\"wp-block-paragraph\">The vulnerabilities were reported to Microsoft on May 20, 2026, with coordinated public advisories released and updated on June 4, 2026. Orange Tsai (@orange_8361) of the DEVCORE Research Team (@d3vc0r3) is credited with the findings.<\/p>\n<p class=\"wp-block-paragraph\">Administrators should prioritize the CVE-2026-45495 update given its code-execution potential and ensure patching across user endpoints to reduce exposure.<\/p>\n<p class=\"has-text-align-center has-background wp-block-paragraph\" style=\"background:linear-gradient(180deg,rgb(238,238,238) 91%,rgb(169,184,195) 100%)\"><strong>Follow us on\u00a0<a href=\"https:\/\/news.google.com\/publications\/CAAqMggKIixDQklTR3dnTWFoY0tGV041WW1WeWMyVmpkWEpwZEhsdVpYZHpMbU52YlNnQVAB?hl=en-IN&amp;gl=IN&amp;ceid=IN:en\" target=\"_blank\" rel=\"noreferrer noopener\">Google News<\/a>,\u00a0<a href=\"https:\/\/www.linkedin.com\/company\/cybersecurity-news\/\" target=\"_blank\" rel=\"noreferrer noopener\">LinkedIn<\/a>,\u00a0and\u00a0<a href=\"https:\/\/x.com\/cyber_press_org\" target=\"_blank\" rel=\"noreferrer noopener\">X<\/a>\u00a0to Get More Instant Updates.<\/strong><\/p>\n<p>The post <a href=\"https:\/\/cybersecuritynews.com\/microsoft-edge-vulnerability-code-execution\/\">Microsoft Edge Vulnerability Allows Remote Attackers to Execute Arbitrary Code<\/a> appeared first on <a href=\"https:\/\/cybersecuritynews.com\/\">Cyber Security News<\/a>.<\/p>\n<\/div>\n<p> \t<BR><br \/>\n <BR><\/BR><br \/>\n    Guru Baran<br \/>\n \t<BR><br \/>\n<BR><\/BR><br \/>\n<a href=\"https:\/\/cybersecuritynews.com\/microsoft-edge-vulnerability-code-execution\/\">Go to cyber-security-news<\/a><br \/>\n \t<BR><br \/>\n <BR><\/BR><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Microsoft Edge Vulnerability Allows Remote Attackers to Execute Arbitrary Code Microsoft has released a security update addressing a critical vulnerability in Microsoft Edge that could allow remote attackers to execute arbitrary code on vulnerable systems. Tracked as CVE-2026-45495 and reported by Orange Tsai of DEVCORE, the flaw carries a CVSS v3 score of 7.5 and [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[129,63,648],"tags":[130],"class_list":["post-13397","post","type-post","status-publish","format-standard","hentry","category-cyber-security","category-cyber-security-news","category-vulnerability-news","tag-cyber-security-news"],"_links":{"self":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/posts\/13397"}],"collection":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/comments?post=13397"}],"version-history":[{"count":0,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/posts\/13397\/revisions"}],"wp:attachment":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/media?parent=13397"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/categories?post=13397"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/tags?post=13397"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}