124048 matches found
EUVD-2026-41595
Absolute path traversal in Microsoft Edge for Android allows an unauthorized attacker to disclose information locally...
EUVD-2026-41592
Exposure of private personal information to an unauthorized actor in Microsoft Edge for Android allows an unauthorized attacker to disclose information over a network...
EUVD-2026-41599
Operation on a resource after expiration or release in Microsoft Edge Chromium-based allows an unauthorized attacker to disclose information over a network...
EUVD-2026-41579
Improper link resolution before file access 'link following' in Microsoft Edge Chromium-based allows an unauthorized attacker to disclose information over a network...
EUVD-2026-41645
Concurrent execution using shared resource with improper synchronization 'race condition' in Microsoft Edge Chromium-based allows an authorized attacker to disclose information locally...
CVE-2026-58291 Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
...
CVE-2026-58291
CVE-2026-58291 affects Microsoft Edge (Chromium-based). The description indicates an information disclosure vulnerability where an attacker can disclose data by operating on a resource after expiration or release. CVSSv3.1 metrics cite Network attack, high complexity, no privileges required, user...
CVE-2026-58300 Microsoft Edge for Android Information Disclosure Vulnerability
...
CVE-2026-58300
CVE-2026-58300 describes an absolute path traversal vulnerability in Microsoft Edge for Android that could allow an unauthorized local attacker to disclose information. Core details from connected sources confirm the impact is local information disclosure; CVSS v3.1 base score 6.2 (Medium) with h...
CVE-2026-58296 Microsoft Edge for Android Information Disclosure Vulnerability
...
CVE-2026-58297 Microsoft Edge for Android Information Disclosure Vulnerability
...
CVE-2026-58297
CVE-2026-58297 affects Microsoft Edge for Android. The issue is an information disclosure that allows an unauthorized attacker to exfiltrate private personal information over a network. According to the sources, the CVSS v3.1 base score is 7.1 (HIGH) with network attack vector, no privileges requ...
CVE-2026-58296
CVE-2026-58296 affects Microsoft Edge for Android. The vulnerability is an information disclosure that allows an unauthenticated attacker to disclose private user information over a network. CVSS 3.1 base score 7.1 (HIGH); attack vector NETWORK; user interaction REQUIRED; no privileges required; ...
CVE-2026-57991 Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
...
CVE-2026-57991
Microsoft Edge (Chromium-based) is affected by CVE-2026-57991 due to Improper link resolution before file access ("link following"). The issue could allow an unauthenticated attacker to disclose information over a network. The vulnerability affects the Edge Chromium rendering/file handling path a...
CVE-2026-58522 Microsoft Edge for Android Information Disclosure Vulnerability
...
CVE-2026-58522
CVE-2026-58522 pertains to Microsoft Edge for Android and describes a relative path traversal that could allow an unauthorized local disclosure of information. The NVD/CVE records label the flaw as a Relative path traversal in Edge for Android, enabling local information disclosure. The CVSS 3.1 ...
CVE-2026-55945 Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
...
CVE-2026-55945
CVE-2026-55945 : In Microsoft Edge (Chromium-based), a race condition due to concurrent execution on a shared resource allows an authorized, local attacker to disclose information. The available documents confirm the issue and its local impact, but do not provide exploit details, affected version...
Apache OFBiz - XML External Entity Injection
In Apache OFBiz 16.11.01 to 16.11.04, the OFBiz HTTP engine org.apache.ofbiz.service.engine.HttpEngine.java handles requests for HTTP services via the /webtools/control/httpService endpoint. Both POST and GET requests to the httpService endpoint may contain three parameters: serviceName,...