Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

CVE-2026-45495: Microsoft Edge (Chromium-based) allows malicious code to run

CVE-2026-45495

Summary

A security issue in Microsoft Edge (Chromium-based) could allow hackers to run unauthorized code on a user's device. This could happen if a user visits a malicious website or opens a compromised file. To stay safe, make sure you keep Microsoft Edge up to date with the latest security patches.

What to do

No fix is available yet. Check with your software vendor for updates.

Affected software

Vendor	Product	Affected versions
microsoft	edge_chromium	< 148.0.3967.70 `cpe:2.3:a:microsoft:edge_chromium:::::-:::*`

Original title

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

Original description

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

nvd CVSS3.1 8.8

Vulnerability type

CWE-20 Improper Input Validation

CWE-94 Code Injection

CWE-119 Buffer Overflow

CWE-35

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45495

Published: 18 May 2026 · Updated: 30 May 2026 · First seen: 18 May 2026