🟠 High | Source: Microsoft Security Response Center
A use-after-free vulnerability in the Chromium GPU component has been assigned CVE-2026-13775 by the Chrome team. Microsoft Edge, being Chromium-based, is affected and will receive a fix via its Chromium ingestion pipeline. Use-after-free flaws in GPU processing can potentially be exploited to achieve arbitrary code execution within the browser process.
Security Architect’s Take: Ensure Microsoft Edge is updated to the latest stable release across all managed endpoints and virtual desktop environments, including Azure Virtual Desktop deployments. Prioritise updates on privileged workstations where browser compromise could lead to credential theft or lateral movement into cloud environments.
Original advisory: Chromium: CVE-2026-13775 Use after free in GPU