Msrc Microsoft Edge vulnerabilities

CVE-2026-0900 [HIGH] Chromium: CVE-2026-0900 Inappropriate implementation in V8 Chromium: CVE-2026-0900 Inappropriate implementation in V8 Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Mi

CVE-2026-0899 [HIGH] Chromium: CVE-2026-0899 Out of bounds memory access in V8 Chromium: CVE-2026-0899 Out of bounds memory access in V8 Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Micr

CVE-2026-0904 [MEDIUM] Chromium: CVE-2026-0904 Incorrect security UI in Digital Credentials Chromium: CVE-2026-0904 Incorrect security UI in Digital Credentials Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) w

CVE-2026-0901 [MEDIUM] Chromium: CVE-2026-0901 Inappropriate implementation in Blink Chromium: CVE-2026-0901 Inappropriate implementation in Blink Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consum

CVE-2026-0903 [MEDIUM] Chromium: CVE-2026-0903 Insufficient validation of untrusted input in Downloads Chromium: CVE-2026-0903 Insufficient validation of untrusted input in Downloads Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open S

CVE-2026-1504 [MEDIUM] Chromium: CVE-2026-1504 Inappropriate implementation in Background Fetch API Chromium: CVE-2026-1504 Inappropriate implementation in Background Fetch API Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source

CVE-2026-1220 Chromium: CVE-2026-1220 Race in V8 Chromium: CVE-2026-1220 Race in V8 Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 144.0.3719.92 01/23/2026 144.0.7559.96/.97 FAQ: Why is this Chrome CVE included in the Security Update

CVE-2025-14766 [HIGH] Chromium: CVE-2025-14766 Use after free in WebGPU Chromium: CVE-2025-14766 Use after free in WebGPU Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 143.0.3650.96 12/18/2025 143.0.7499.146/.147 FAQ: Why is this Ch

CVE-2025-13721 [HIGH] Chromium: CVE-2025-13721 Race in v8 Chromium: CVE-2025-13721 Race in v8 Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being do

CVE-2025-13639 [HIGH] Chromium: CVE-2025-13639 Inappropriate implementation in WebRTC Chromium: CVE-2025-13639 Inappropriate implementation in WebRTC Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is con

CVE-2025-14174 [HIGH] Chromium: CVE-2025-14174 Out of bounds memory access in ANGLE Chromium: CVE-2025-14174 Out of bounds memory access in ANGLE Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. Google is aware that an exploit for CVE-2025-14174 exists in the wild. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned

CVE-2025-13631 [HIGH] Chromium: CVE-2025-13631 Inappropriate implementation in Google Updater Chromium: CVE-2025-13631 Inappropriate implementation in Google Updater Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (O

CVE-2025-13638 [HIGH] Chromium: CVE-2025-13638 Use after free in Media Stream Chromium: CVE-2025-13638 Use after free in Media Stream Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microso

CVE-2025-13720 [HIGH] Chromium: CVE-2025-13720 Bad cast in Loader Chromium: CVE-2025-13720 Bad cast in Loader Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based)

CVE-2025-13630 [HIGH] Chromium: CVE-2025-13630 Type Confusion in V8 Chromium: CVE-2025-13630 Type Confusion in V8 Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-ba

CVE-2025-14765 [HIGH] Chromium: CVE-2025-14765 Out of bounds read and write in V8 Chromium: CVE-2025-14765 Out of bounds read and write in V8 Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 143.0.3650.96 12/18/2025 143.0.7499.146/.147

CVE-2025-13633 [HIGH] Chromium: CVE-2025-13633 Use after free in Digital Credentials Chromium: CVE-2025-13633 Use after free in Digital Credentials Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consu

CVE-2025-13636 [MEDIUM] Chromium: CVE-2025-13636 Inappropriate implementation in Split View Chromium: CVE-2025-13636 Inappropriate implementation in Split View Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) wh

CVE-2025-13637 [MEDIUM] Chromium: CVE-2025-13637 Inappropriate implementation in Downloads Chromium: CVE-2025-13637 Inappropriate implementation in Downloads Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) whic

CVE-2025-13635 [MEDIUM] Chromium: CVE-2025-13635 Inappropriate implementation in Downloads Chromium: CVE-2025-13635 Inappropriate implementation in Downloads Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) whic