Kaspersky ID:
KLA91137
検出日:
07/11/2026
更新日:
07/13/2026

説明

Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to bypass security restrictions, cause denial of service, execute arbitrary code, gain privileges, obtain sensitive information, spoof user interface.

Below is a complete list of vulnerabilities:

  1. Denial of service vulnerability in iOSWeb can be exploited remotely to cause denial of service.
  2. A remote code execution vulnerability in WebUSB can be exploited remotely to execute arbitrary code.
  3. A remote code execution vulnerability in Bluetooth can be exploited remotely to execute arbitrary code.
  4. A remote code execution vulnerability in Fullscreen can be exploited remotely to execute arbitrary code.
  5. Denial of service vulnerability in Downloads can be exploited remotely to cause denial of service.
  6. A remote code execution vulnerability in Touchbar can be exploited remotely to execute arbitrary code.
  7. Security vulnerability in Chrome for iOS can be exploited to bypass security restrictions.
  8. A remote code execution vulnerability in GFX can be exploited remotely to execute arbitrary code.
  9. A remote code execution vulnerability in Import can be exploited remotely to execute arbitrary code.
  10. Denial of service vulnerability in Chrome for iOS can be exploited remotely to cause denial of service.
  11. Information disclosure vulnerability in Safe Browsing can be exploited to obtain sensitive information.
  12. Denial of service vulnerability in File Input can be exploited remotely to cause denial of service.
  13. Denial of service vulnerability in ANGLE can be exploited remotely to cause denial of service.
  14. Denial of service vulnerability in Extensions can be exploited remotely to cause denial of service.
  15. Denial of service vulnerability in Dawn can be exploited remotely to cause denial of service.
  16. Denial of service vulnerability in Autofill can be exploited remotely to cause denial of service.
  17. A remote code execution vulnerability in Updater can be exploited remotely to execute arbitrary code.
  18. Security UI vulnerability in Chrome for iOS can be exploited to spoof user interface.
  19. A remote code execution vulnerability in USB can be exploited remotely to execute arbitrary code.
  20. Denial of service vulnerability in WebAppInstalls can be exploited remotely to cause denial of service.
  21. Denial of service vulnerability in Speech can be exploited remotely to cause denial of service.
  22. Security vulnerability in Web Authentication (Passkeys & Security Keys) can be exploited to bypass security restrictions.
  23. Denial of service vulnerability in CustomTabs can be exploited remotely to cause denial of service.
  24. Denial of service vulnerability in Input can be exploited remotely to cause denial of service.
  25. Denial of service vulnerability in Network can be exploited remotely to cause denial of service.
  26. A remote code execution vulnerability in WebView can be exploited remotely to execute arbitrary code.
  27. A remote code execution vulnerability in Skia can be exploited remotely to execute arbitrary code.
  28. Security vulnerability in NFC can be exploited to bypass security restrictions.
  29. Denial of service vulnerability in WebAuthentication can be exploited remotely to cause denial of service.
  30. Security UI vulnerability in Safe Browsing can be exploited to spoof user interface.
  31. Denial of service vulnerability in Omnibox can be exploited remotely to cause denial of service.
  32. Security vulnerability in WebXR can be exploited to bypass security restrictions.
  33. Security vulnerability in Autofill can be exploited to bypass security restrictions.
  34. Denial of service vulnerability in Passwords can be exploited remotely to cause denial of service.
  35. A remote code execution vulnerability in Chrome for iOS can be exploited remotely to execute arbitrary code.
  36. Denial of service vulnerability in GPU can be exploited remotely to cause denial of service.
  37. Denial of service vulnerability in WebView can be exploited remotely to cause denial of service.
  38. Denial of service vulnerability in UI can be exploited remotely to cause denial of service.
  39. Denial of service vulnerability in DevTools can be exploited remotely to cause denial of service.
  40. Denial of service vulnerability in Sharing can be exploited remotely to cause denial of service.
  41. Denial of service vulnerability in WebShare can be exploited remotely to cause denial of service.
  42. Denial of service vulnerability in CSS can be exploited remotely to cause denial of service.
  43. Denial of service vulnerability in DataTransfer can be exploited remotely to cause denial of service.
  44. Denial of service vulnerability in ScriptInjections can be exploited remotely to cause denial of service.
  45. Security vulnerability in Payments can be exploited to bypass security restrictions.
  46. Security vulnerability in WebView can be exploited to bypass security restrictions.
  47. A remote code execution vulnerability in Safe Browsing can be exploited remotely to execute arbitrary code.
  48. Security UI vulnerability in Mobile can be exploited to spoof user interface.
  49. Denial of service vulnerability in Credential Management can be exploited remotely to cause denial of service.
  50. Security UI vulnerability in Extensions can be exploited to spoof user interface.
  51. Security UI vulnerability in File Input can be exploited to spoof user interface.
  52. A remote code execution vulnerability in Omnibox can be exploited remotely to execute arbitrary code.
  53. A remote code execution vulnerability in Input can be exploited remotely to execute arbitrary code.
  54. Security vulnerability in Sandbox can be exploited to bypass security restrictions.
  55. Security UI vulnerability in UI can be exploited to spoof user interface.
  56. A remote code execution vulnerability in ANGLE can be exploited remotely to execute arbitrary code.
  57. Denial of service vulnerability in Tint can be exploited remotely to cause denial of service.
  58. A remote code execution vulnerability in V8 can be exploited remotely to execute arbitrary code.
  59. Denial of service vulnerability in V8 can be exploited remotely to cause denial of service.
  60. Denial of service vulnerability in PDFium can be exploited remotely to cause denial of service.
  61. Denial of service vulnerability in Skia can be exploited remotely to cause denial of service.
  62. A remote code execution vulnerability in Dawn can be exploited remotely to execute arbitrary code.
  63. A remote code execution vulnerability in Tint can be exploited remotely to execute arbitrary code.
  64. A remote code execution vulnerability in Microsoft Edge (Chromium-based) can be exploited remotely to execute arbitrary code.
  65. An elevation of privilege vulnerability in Microsoft Edge (Chromium-based) can be exploited remotely to gain privileges.

オリジナルアドバイザリー

エクスプロイテーション

Public exploits exist for this vulnerability.

CVEリスト

  • CVE-2026-13777
    unknown
  • CVE-2026-13778
    unknown
  • CVE-2026-13785
    unknown
  • CVE-2026-13788
    unknown
  • CVE-2026-13791
    unknown
  • CVE-2026-13792
    unknown
  • CVE-2026-13795
    unknown
  • CVE-2026-13805
    unknown
  • CVE-2026-13807
    unknown
  • CVE-2026-13808
    unknown
  • CVE-2026-13809
    unknown
  • CVE-2026-13812
    unknown
  • CVE-2026-13813
    unknown
  • CVE-2026-13816
    unknown
  • CVE-2026-13819
    unknown
  • CVE-2026-13822
    unknown
  • CVE-2026-13825
    unknown
  • CVE-2026-13826
    unknown
  • CVE-2026-13827
    unknown
  • CVE-2026-13833
    unknown
  • CVE-2026-13842
    unknown
  • CVE-2026-13843
    unknown
  • CVE-2026-13846
    unknown
  • CVE-2026-13847
    unknown
  • CVE-2026-13850
    unknown
  • CVE-2026-13851
    unknown
  • CVE-2026-13852
    unknown
  • CVE-2026-13856
    unknown
  • CVE-2026-13862
    unknown
  • CVE-2026-13863
    unknown
  • CVE-2026-13866
    unknown
  • CVE-2026-13868
    unknown
  • CVE-2026-13870
    unknown
  • CVE-2026-13872
    unknown
  • CVE-2026-13878
    unknown
  • CVE-2026-13880
    unknown
  • CVE-2026-13885
    unknown
  • CVE-2026-13887
    unknown
  • CVE-2026-13889
    unknown
  • CVE-2026-13892
    unknown
  • CVE-2026-13902
    unknown
  • CVE-2026-13904
    unknown
  • CVE-2026-13905
    unknown
  • CVE-2026-13907
    unknown
  • CVE-2026-13908
    unknown
  • CVE-2026-13910
    unknown
  • CVE-2026-13912
    unknown
  • CVE-2026-13913
    unknown
  • CVE-2026-13914
    unknown
  • CVE-2026-13915
    unknown
  • CVE-2026-13916
    unknown
  • CVE-2026-13917
    unknown
  • CVE-2026-13918
    unknown
  • CVE-2026-13923
    unknown
  • CVE-2026-13924
    unknown
  • CVE-2026-13926
    unknown
  • CVE-2026-13927
    unknown
  • CVE-2026-13929
    unknown
  • CVE-2026-13932
    unknown
  • CVE-2026-13936
    unknown
  • CVE-2026-13939
    unknown
  • CVE-2026-13943
    unknown
  • CVE-2026-13944
    unknown
  • CVE-2026-13946
    unknown
  • CVE-2026-13949
    unknown
  • CVE-2026-13955
    unknown
  • CVE-2026-13964
    unknown
  • CVE-2026-13969
    unknown
  • CVE-2026-13974
    unknown
  • CVE-2026-13975
    unknown
  • CVE-2026-13980
    unknown
  • CVE-2026-13981
    unknown
  • CVE-2026-13983
    unknown
  • CVE-2026-13987
    unknown
  • CVE-2026-13991
    unknown
  • CVE-2026-13992
    unknown
  • CVE-2026-13994
    unknown
  • CVE-2026-13995
    unknown
  • CVE-2026-13997
    unknown
  • CVE-2026-13998
    unknown
  • CVE-2026-14005
    unknown
  • CVE-2026-14028
    unknown
  • CVE-2026-14066
    unknown
  • CVE-2026-14067
    unknown
  • CVE-2026-14075
    unknown
  • CVE-2026-14096
    unknown
  • CVE-2026-14099
    unknown
  • CVE-2026-14101
    unknown
  • CVE-2026-14114
    unknown
  • CVE-2026-14123
    unknown
  • CVE-2026-14126
    unknown
  • CVE-2026-14128
    unknown
  • CVE-2026-14136
    unknown
  • CVE-2026-14137
    unknown
  • CVE-2026-14385
    unknown
  • CVE-2026-14386
    unknown
  • CVE-2026-14388
    unknown
  • CVE-2026-14391
    unknown
  • CVE-2026-14393
    unknown
  • CVE-2026-14394
    unknown
  • CVE-2026-14395
    unknown
  • CVE-2026-14396
    unknown
  • CVE-2026-14399
    unknown
  • CVE-2026-14402
    unknown
  • CVE-2026-14403
    unknown
  • CVE-2026-14404
    unknown
  • CVE-2026-14406
    unknown
  • CVE-2026-14407
    unknown
  • CVE-2026-14408
    unknown
  • CVE-2026-14409
    unknown
  • CVE-2026-14410
    unknown
  • CVE-2026-14414
    unknown
  • CVE-2026-14415
    unknown
  • CVE-2026-14418
    unknown
  • CVE-2026-14421
    unknown
  • CVE-2026-14422
    unknown
  • CVE-2026-14426
    unknown
  • CVE-2026-14430
    unknown
  • CVE-2026-14431
    unknown
  • CVE-2026-14432
    unknown
  • CVE-2026-14382
    unknown
  • CVE-2026-14390
    unknown
  • CVE-2026-14392
    unknown
  • CVE-2026-14397
    unknown
  • CVE-2026-14398
    unknown
  • CVE-2026-14400
    unknown
  • CVE-2026-14401
    unknown
  • CVE-2026-14405
    unknown
  • CVE-2026-14411
    unknown
  • CVE-2026-14412
    unknown
  • CVE-2026-14413
    unknown
  • CVE-2026-14416
    unknown
  • CVE-2026-14417
    unknown
  • CVE-2026-14419
    unknown
  • CVE-2026-14420
    unknown
  • CVE-2026-14423
    unknown
  • CVE-2026-14424
    unknown
  • CVE-2026-14425
    unknown
  • CVE-2026-14427
    unknown
  • CVE-2026-14428
    unknown
  • CVE-2026-14429
    unknown
  • CVE-2026-58281
    unknown
  • CVE-2026-58596
    unknown

も参照してください

お住まいの地域に広がる脆弱性の統計をご覧ください statistics.securelist.com

この脆弱性についての記述に不正確な点がありますか? お知らせください!
Kaspersky IT Security Calculator
も参照してください
新しいカスペルスキー
あなたのデジタルライフを守る
も参照してください
Do you want to save your changes?
Your message has been sent successfully.