Microsoft Security Response Center Blog Alerts

Chromium: CVE-2025-3072 Inappropriate implementation in Custom Tabs

Posted on Thursday April 03, 2025

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024 ) for more information.

Chromium: CVE-2025-3074 Inappropriate implementation in Downloads

Posted on Thursday April 03, 2025

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024 ) for more information.

CVE-2025-25001 Microsoft Edge for iOS Spoofing Vulnerability

Posted on Thursday April 03, 2025

Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.

CVE-2025-25000 Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

Posted on Thursday April 03, 2025

Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

CVE-2025-26683 Azure Playwright Elevation of Privilege Vulnerability

Posted on Monday March 31, 2025

Improper authorization in Azure Playwright allows an unauthorized attacker to elevate privileges over a network.

Chromium: CVE-2025-2783 Incorrect handle provided in unspecified circumstances in Mojo on Windows

Posted on Wednesday March 26, 2025

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024 ) for more information.

Page:   1...484950515253545556...172