CVE-2025-21401 Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

Posted on Friday February 21, 2025

Updated acknowledgment. This is an informational change only.

 

Chromium: CVE-2025-1426 Heap buffer overflow in GPU

Posted on Friday February 21, 2025

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024 ) for more information.

 

Chromium: CVE-2025-1006 Use after free in Network

Posted on Friday February 21, 2025

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024 ) for more information.

 

Chromium: CVE-2025-0999 Heap buffer overflow in V8

Posted on Friday February 21, 2025

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024 ) for more information.

 

CVE-2025-21325 Windows Secure Kernel Mode Elevation of Privilege Vulnerability

Posted on Friday February 21, 2025

In the Security Updates table, added Download and Article links for Windows Server 2025 (Server Core installation). Microsoft recommends that customers install the update to be fully protected from the vulnerability. Customers whose systems are configured to receive automatic updates do not need to take any further action.

 

CVE-2025-24989 Microsoft Power Pages Elevation of Privilege Vulnerability

Posted on Wednesday February 19, 2025

An improper access control vulnerability in Power Pages allows an unauthorized attacker to elevate privileges over a network potentially bypassing the user registration control. This vulnerability **has already been mitigated in the service** and all affected cusomters have been notified. This update addressed the registration control bypass. Affected customers have been given instructions on reviewing their sites for potential exploitation and clean up methods. If you've not been notified this vulnerability does not affect you.

 

Page:   1...636465666768697071...172

Celebrating 35+ Years

Managed Computer Support Services

Contact Us

Support Ends for Windows 10 22H2, Windows Server 2012 R2, Exchange 2013, Office 2016