CVE-2026-45495

Name of the Vulnerable Software and Affected Versions Microsoft Edge (Chromium-based) versions prior to 148.0.3967.70

Description An improper input validation flaw within the browser's rendering pipeline and JavaScript engine allows an unauthenticated attacker to execute arbitrary code with the privileges of the browser process. This is achieved by enticing a user to visit a maliciously crafted webpage, which leads to memory corruption, such as a buffer overflow (a condition where a program writes more data to a block of memory than it can hold, potentially overwriting adjacent memory).

Recommendations Update to version 148.0.3967.70.