CVE-2025-21253

Summary

CVE-2025-21253 is a new spoofing vulnerability affecting Microsoft Edge browsers on both iOS and Android platforms. Maliciously crafted web content can manipulate the address bar, deceiving users into believing they are on a legitimate site when in fact they are on a phishing page. This can potentially lead to sensitive information being compromised. Microsoft is currently working on a patch to address this issue and advises users to be cautious when navigating unfamiliar websites or clicking on links from untrusted sources. Until a fix is released, users are encouraged to enable multi-factor authentication and keep their browsers updated to the latest version.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.