CVE-2026-21223 — Vulnetix

Try Vulnetix Request Demo

CVE-2026-21223 PUBLISHED CVSS 7.099999904632568 HIGH

Improper privilege management in Microsoft Edge (Chromium-based) allows an authorized attacker to bypass a security feature locally.

EPSS 0.03% · 7.7th percentile

Risk Scores

CVSS v3.1

7.099999904632568

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N/E:U/RL:O/RC:C

EPSS Score

0.03%

7.7th percentile

Affected Products

Vendor	Product	Versions
Microsoft	Microsoft Edge (Chromium-based)	1.0.0.0
microsoft	edge_chromium	1.0.0.0, 0

Timeline

Jan 13, 2026 CVE Published
Jan 16, 2026 PoC Published
Jan 17, 2026 EPSS Score
Jan 17, 2026 PoC Published
Jan 19, 2026 EPSS Score
Jan 19, 2026 PoC Published
Jan 22, 2026 EPSS Score
Jan 24, 2026 EPSS Score
Jan 26, 2026 EPSS Score
Jan 29, 2026 EPSS Score
Jan 31, 2026 EPSS Score
Feb 2, 2026 EPSS Score

References

Open in Interactive Console →