CVE-2025-29815

CVSS 3.1 Score 7.6 of 10 (high)

Details

Published Apr 4, 2025

Updated: Apr 7, 2025

CWE ID 416

Summary

CVE-2025-29815 is a newly discovered vulnerability affecting Microsoft Edge, which is based on Chromium. Malicious actors can leverage this use-after-free issue to execute code over a network, giving them unauthorized access and control. This vulnerability poses a significant risk, particularly to organizations that rely on Microsoft Edge for web browsing, and could potentially lead to serious security breaches. Microsoft is encouraging users to install the latest security updates to protect against this exploit. Attackers must first gain authorized access to a target system to exploit this vulnerability. The exact conditions required to trigger the issue are still under investigation.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

Microsoft Edge

Affected Vendors

Microsoft

Advisories, Assessments, and Mitigations

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Uncovering MintsLoader With Recorded Future Malware Intelligence Hunting

Know What Matters

For Customers

For Partners