Microsoft Security Response Center Blog Alerts

Chromium: CVE-2025-1923 Inappropriate Implementation in Permission Prompts

Posted on Friday March 07, 2025

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2025) for more information.

CVE-2025-21401 Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

Posted on Friday February 21, 2025

Updated acknowledgment. This is an informational change only.

Chromium: CVE-2025-1426 Heap buffer overflow in GPU

Posted on Friday February 21, 2025

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024 ) for more information.

Chromium: CVE-2025-1006 Use after free in Network

Posted on Friday February 21, 2025

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024 ) for more information.

Chromium: CVE-2025-0999 Heap buffer overflow in V8

Posted on Friday February 21, 2025

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024 ) for more information.

CVE-2025-21325 Windows Secure Kernel Mode Elevation of Privilege Vulnerability

Posted on Friday February 21, 2025

In the Security Updates table, added Download and Article links for Windows Server 2025 (Server Core installation). Microsoft recommends that customers install the update to be fully protected from the vulnerability. Customers whose systems are configured to receive automatic updates do not need to take any further action.

Page:   1...111213141516171819...120