CVE-2026-21223
HIGH WAF: Low
CVSS 7.1
Published: 2026-01-16
CWE-269
Improper privilege management in Microsoft Edge (Chromium-based) allows an authorized attacker to bypass a security feature locally.
WAF Coverage Analysis
Improper Privilege Management
Low WAF Coverage
OWASP: A01:2021 Broken Access Control
Affected Software
| Vendor | Product | Version |
|---|---|---|
| microsoft | edge_chromium | up to 144.0.3719.82 |
References
- msrc.microsoft.com (Vendor Advisory)