Detections
Analytics
Microsoft Edge (Chromium) < 149.0.4022.67 Multiple Vulnerabilities
medium Nessus Plugin ID 321126
Synopsis
The remote host has an web browser installed that is affected by multiple vulnerabilities.Description
The version of Microsoft Edge installed on the remote Windows host is prior to 149.0.4022.67. It is, therefore, affected by multiple vulnerabilities as referenced in the June 15, 2026 advisory.- Insufficient validation of untrusted input in Extensions in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. (Chromium security severity: High) (CVE-2026-11658)
- Use after free in Ozone in Google Chrome prior to 149.0.7827.103 allowed a local attacker to potentially exploit heap corruption via physical access to the device. (Chromium security severity: Critical) (CVE-2026-11628)
- Use after free in Ozone in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical) (CVE-2026-11629)
- Use after free in File Input in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical) (CVE-2026-11630)
- Use after free in Aura in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.
(Chromium security severity: Critical) (CVE-2026-11631)
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.
Solution
Upgrade to Microsoft Edge version 149.0.4022.67 or later.See Also
http://www.nessus.org/u?59ca99c9
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11628
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11629
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11630
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11631
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11632
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11633
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11634
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11635
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11636
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11637
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11638
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11639
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11640
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11641
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11642
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11643
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11644
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11645
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11646
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11648
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11649
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11650
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11651
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11652
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11653
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11654
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11655
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11656
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11657
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11658
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11659
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11660
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11661
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11662
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11663
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11664
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11665
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11666
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11667
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11668
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11669
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11670
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11671
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11672
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11673
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11674
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11675
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11676
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11677
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11678
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11679
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11680
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11681
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11682
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11683
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11684
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11685
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11686
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11687
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11688
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11689
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11690
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11691
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11692
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11693
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11694
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11695
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11696
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11697
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11698
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11699
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11700
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11701
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-12007
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-12008
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-12009
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-12010
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-12011
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-12012
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-12013
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-12014
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-12015
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-12016
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-12017
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-12018
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-12019
Plugin Details
Severity: Medium
ID: 321126
File Name: microsoft_edge_chromium_149_0_4022_67.nasl
Version: 1.1
Type: Local
Agent: windows
Family: Windows
Published: 6/15/2026
Updated: 6/15/2026
Supported Sensors: Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: Critical
Score: 9.2
CVSS v2
Risk Factor: High
Base Score: 7.8
Temporal Score: 6.4
Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:C/A:N
CVSS Score Source: CVE-2026-11658
CVSS v3
Risk Factor: Medium
Base Score: 6.5
Temporal Score: 6
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
Temporal Vector: CVSS:3.0/E:F/RL:O/RC:C
Vulnerability Information
CPE: cpe:/a:microsoft:edge
Required KB Items: installed_sw/Microsoft Edge (Chromium), SMB/Registry/Enumerated
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 6/15/2026
Vulnerability Publication Date: 6/8/2026
CISA Known Exploited Vulnerability Due Dates: 6/23/2026
Reference Information
CVE: CVE-2026-11628, CVE-2026-11629, CVE-2026-11630, CVE-2026-11631, CVE-2026-11632, CVE-2026-11633, CVE-2026-11634, CVE-2026-11635, CVE-2026-11636, CVE-2026-11637, CVE-2026-11638, CVE-2026-11639, CVE-2026-11640, CVE-2026-11641, CVE-2026-11642, CVE-2026-11643, CVE-2026-11644, CVE-2026-11645, CVE-2026-11646, CVE-2026-11648, CVE-2026-11649, CVE-2026-11650, CVE-2026-11651, CVE-2026-11652, CVE-2026-11653, CVE-2026-11654, CVE-2026-11655, CVE-2026-11656, CVE-2026-11657, CVE-2026-11658, CVE-2026-11659, CVE-2026-11660, CVE-2026-11661, CVE-2026-11662, CVE-2026-11663, CVE-2026-11664, CVE-2026-11665, CVE-2026-11666, CVE-2026-11667, CVE-2026-11668, CVE-2026-11669, CVE-2026-11670, CVE-2026-11671, CVE-2026-11672, CVE-2026-11673, CVE-2026-11674, CVE-2026-11675, CVE-2026-11676, CVE-2026-11677, CVE-2026-11678, CVE-2026-11679, CVE-2026-11680, CVE-2026-11681, CVE-2026-11682, CVE-2026-11683, CVE-2026-11684, CVE-2026-11685, CVE-2026-11686, CVE-2026-11687, CVE-2026-11688, CVE-2026-11689, CVE-2026-11690, CVE-2026-11691, CVE-2026-11692, CVE-2026-11693, CVE-2026-11694, CVE-2026-11695, CVE-2026-11696, CVE-2026-11697, CVE-2026-11698, CVE-2026-11699, CVE-2026-11700, CVE-2026-11701, CVE-2026-12007, CVE-2026-12008, CVE-2026-12009, CVE-2026-12010, CVE-2026-12011, CVE-2026-12012, CVE-2026-12013, CVE-2026-12014, CVE-2026-12015, CVE-2026-12016, CVE-2026-12017, CVE-2026-12018, CVE-2026-12019