CVE-2026-0102
low
Microsoft CVSS v3 Base Score
3.1
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C
EPSS Score
0.0%
Exploitation probability in 30 days
Top 88% most likely to be exploited
Attack Characteristics
Attack Vector
Network
Attack Complexity
High
Privileges Required
None
User Interaction
Required
Confidentiality
Low
Integrity
None
Availability
None
Published: February 17, 2026 (86 days ago)
Last Modified: March 13, 2026
Vendor: Microsoft
Source: MITRE
Vulnerability Report
Generated by CyberWatcher
Description
Under specific conditions, a malicious webpage may trigger autofill population after two consecutive taps, potentially without clear or intentional user consent. This could result in disclosure of stored autofill data such as addresses, email, or phone number metadata.
CWE
CWE-359Affected Products
Microsoft Microsoft Edge (Chromium-based)