Msrc Microsoft Edge vulnerabilities

CVE-2025-10500 [HIGH] Chromium: CVE-2025-10500 Use after free in Dawn Chromium: CVE-2025-10500 Use after free in Dawn Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 140.0.3485.81 09/19/2025 140.0.7339.186 FAQ: Why is this Chrome CVE

CVE-2025-47967 [MEDIUM] CWE-357 Microsoft Edge (Chromium-based) for Android Spoofing Vulnerability Microsoft Edge (Chromium-based) for Android Spoofing Vulnerability Description: Insufficient ui warning of dangerous operations in Microsoft Edge for Android allows an unauthorized attacker to perform spoofing over a network. FAQ: According to the CVSS metric, a successful exploitation could lead to a scope change (S:C). What does this mean for this vulnerability? A user could be tricked into ent

CVE-2025-9865 [MEDIUM] Chromium: CVE-2025-9865 Inappropriate implementation in Toolbar Chromium: CVE-2025-9865 Inappropriate implementation in Toolbar Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is co

CVE-2025-9867 [MEDIUM] Chromium: CVE-2025-9867 Inappropriate implementation in Downloads Chromium: CVE-2025-9867 Inappropriate implementation in Downloads Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which i

CVE-2025-53791 [MEDIUM] CWE-284 Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability Description: Improper access control in Microsoft Edge (Chromium-based) allows an unauthorized attacker to bypass a security feature over a network. FAQ: According to the CVSS metric, the attack complexity is high (AC:H). What does that mean for this vulnerability? Successful exploitation of this vulnerability requires an at

CVE-2025-9864 Chromium: CVE-2025-9864 Use after free in V8 Chromium: CVE-2025-9864 Use after free in V8 Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It i

CVE-2025-9132 [HIGH] Chromium: CVE-2025-9132 Out of bounds write in V8 Chromium: CVE-2025-9132 Out of bounds write in V8 Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chro

CVE-2025-8578 [HIGH] Chromium: CVE-2025-8578 Use after free in Cast Chromium: CVE-2025-8578 Use after free in Cast Description: Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 139.0.3405.86 8/07/2025 139.0.7258.66/67 FAQ: Why is this Chrome CVE included in the Security Update Gui

CVE-2025-9478 [HIGH] Chromium: CVE-2025-9478 Use after free in ANGLE Chromium: CVE-2025-9478 Use after free in ANGLE Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 139.0.3405.125 8/28/2025 139.0.7258.154/.155 FAQ: Why is this Chrome

CVE-2025-8576 [HIGH] Chromium: CVE-2025-8576 Use after free in Extensions Chromium: CVE-2025-8576 Use after free in Extensions Description: Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 139.0.3405.86 8/07/2025 139.0.7258.66/67 FAQ: Why is this Chrome CVE included in the Securit

CVE-2025-8882 [HIGH] Chromium: CVE-2025-8882 Use after free in Aura Chromium: CVE-2025-8882 Use after free in Aura Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 139.0.3405.102 8/15/2025 139.0.7258.127/.128 FAQ: Why is this Chrome CV

CVE-2025-8879 [HIGH] Chromium: CVE-2025-8879 Heap buffer overflow in libaom Chromium: CVE-2025-8879 Heap buffer overflow in libaom Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 139.0.3405.102 8/15/2025 139.0.7258.127/.128 FAQ: Why i

CVE-2025-8880 [HIGH] Chromium: CVE-2025-8880 Race in V8 Chromium: CVE-2025-8880 Race in V8 Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 139.0.3405.102 8/15/2025 139.0.7258.127/.128 FAQ: Why is this Chrome CVE included in the Securi

CVE-2025-8901 [HIGH] Chromium: CVE-2025-8901 Out of bounds write in ANGLE Chromium: CVE-2025-8901 Out of bounds write in ANGLE Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 139.0.3405.102 8/15/2025 139.0.7258.127/.128 FAQ: Why is th

CVE-2025-8881 [MEDIUM] Chromium: CVE-2025-8881 Inappropriate implementation in File Picker Chromium: CVE-2025-8881 Inappropriate implementation in File Picker Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 139.0.3405.102 8/15/2025 139.

CVE-2025-8577 [MEDIUM] Chromium: CVE-2025-8577 Inappropriate implementation in Picture In Picture Chromium: CVE-2025-8577 Inappropriate implementation in Picture In Picture Description: Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 139.0.3405.86 8/07/2025 139.0.7258.66/67 FAQ:

CVE-2025-8580 [MEDIUM] Chromium: CVE-2025-8580 Inappropriate implementation in Filesystems Chromium: CVE-2025-8580 Inappropriate implementation in Filesystems Description: Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 139.0.3405.86 8/07/2025 139.0.7258.66/67 FAQ: Why is this Ch

CVE-2025-8582 [MEDIUM] Chromium: CVE-2025-8582 Insufficient validation of untrusted input in DOM Chromium: CVE-2025-8582 Insufficient validation of untrusted input in DOM Description: Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 139.0.3405.86 8/07/2025 139.0.7258.66/67 FAQ: Wh

CVE-2025-8581 [MEDIUM] Chromium: CVE-2025-8581 Inappropriate implementation in Extensions Chromium: CVE-2025-8581 Inappropriate implementation in Extensions Description: Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 139.0.3405.86 8/07/2025 139.0.7258.66/67 FAQ: Why is this Chro

CVE-2025-8579 [MEDIUM] Chromium: CVE-2025-8579 Inappropriate implementation in Gemini Live in Chrome Chromium: CVE-2025-8579 Inappropriate implementation in Gemini Live in Chrome Description: Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 139.0.3405.86 8/07/2025 139.0.7258.66/67