Msrc Microsoft Edge vulnerabilities

CVE-2025-12428 [HIGH] Chromium: CVE-2025-12428 Type Confusion in V8 Chromium: CVE-2025-12428 Type Confusion in V8 Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 142.0.3595.53 10/31/2025 142.0.7445.59/.60 FAQ: Why is this Chrome CVE i

CVE-2025-11209 [HIGH] Chromium: CVE-2025-11209 Inappropriate implementation in Omnibox Chromium: CVE-2025-11209 Inappropriate implementation in Omnibox Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is c

CVE-2025-11460 [HIGH] Chromium: CVE-2025-11460 Use after free in Storage Chromium: CVE-2025-11460 Use after free in Storage Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (C

CVE-2025-11756 [HIGH] Chromium: CVE-2025-11756 Use after free in Safe Browsing Chromium: CVE-2025-11756 Use after free in Safe Browsing Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 141.0.3537.85 10/17/2025 141.0.7390.107/.108 FAQ:

CVE-2025-12430 [HIGH] Chromium: CVE-2025-12430 Object lifecycle issue in Media Chromium: CVE-2025-12430 Object lifecycle issue in Media Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 142.0.3595.53 10/31/2025 142.0.7445.59/.60 FAQ: Wh

CVE-2025-12438 [HIGH] Chromium: CVE-2025-12438 Use after free in Ozone Chromium: CVE-2025-12438 Use after free in Ozone Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 142.0.3595.53 10/31/2025 142.0.7445.59/.60 FAQ: Why is this Chrome

CVE-2025-12432 [HIGH] Chromium: CVE-2025-12432 Race in V8 Chromium: CVE-2025-12432 Race in V8 Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 142.0.3595.53 10/31/2025 142.0.7445.59/.60 FAQ: Why is this Chrome CVE included in the Secur

CVE-2025-11205 [HIGH] Chromium: CVE-2025-11205 Heap buffer overflow in WebGPU Chromium: CVE-2025-11205 Heap buffer overflow in WebGPU Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microso

CVE-2025-11215 [MEDIUM] Chromium: CVE-2025-11215 Off by one error in V8 Chromium: CVE-2025-11215 Off by one error in V8 Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chrom

CVE-2025-12436 [MEDIUM] Chromium: CVE-2025-12436 Policy bypass in Extensions Chromium: CVE-2025-12436 Policy bypass in Extensions Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 142.0.3595.53 10/31/2025 142.0.7445.59/.60 FAQ: Why is t

CVE-2025-12435 [MEDIUM] Chromium: CVE-2025-12435 Incorrect security UI in Omnibox Chromium: CVE-2025-12435 Incorrect security UI in Omnibox Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 142.0.3595.53 10/31/2025 142.0.7445.59/.60 FAQ

CVE-2025-12443 [MEDIUM] Chromium: CVE-2025-12433 Inappropriate implementation in V8 Chromium: CVE-2025-12433 Inappropriate implementation in V8 Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 142.0.3595.53 10/31/2025 142.0.7445.59/.60

CVE-2025-11213 [MEDIUM] Chromium: CVE-2025-11213 Inappropriate implementation in Omnibox Chromium: CVE-2025-11213 Inappropriate implementation in Omnibox Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is

CVE-2025-60711 [MEDIUM] CWE-693 Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability Description: Protection mechanism failure in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 142.0.3595.53 10/31/2025 142.0.7445.59/.60 FAQ: According to the

CVE-2025-11207 [MEDIUM] Chromium: CVE-2025-11207 Side-channel information leakage in Storage Chromium: CVE-2025-11207 Side-channel information leakage in Storage Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS)

CVE-2025-12444 [MEDIUM] Chromium: CVE-2025-12444 Incorrect security UI in Fullscreen UI Chromium: CVE-2025-12444 Incorrect security UI in Fullscreen UI Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 142.0.3595.53 10/31/2025 142.0.7445.

CVE-2025-11208 [MEDIUM] Chromium: CVE-2025-11208 Inappropriate implementation in Media Chromium: CVE-2025-11208 Inappropriate implementation in Media Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is con

CVE-2025-11216 [MEDIUM] Chromium: CVE-2025-11216 Inappropriate implementation in Storage Chromium: CVE-2025-11216 Inappropriate implementation in Storage Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: Why is this Chrome CVE included in the Security Update Guide? The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is

CVE-2025-12447 [MEDIUM] Chromium: CVE-2025-12447 Incorrect security UI in Omnibox Chromium: CVE-2025-12447 Incorrect security UI in Omnibox Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 142.0.3595.53 10/31/2025 142.0.7445.59/.60 FAQ

CVE-2025-12441 [MEDIUM] Chromium: CVE-2025-12441 Out of bounds read in V8 Chromium: CVE-2025-12441 Out of bounds read in V8 Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. FAQ: What is the version information for this release? Microsoft Edge Version Date Released Based on Chromium Version 142.0.3595.53 10/31/2025 142.0.7445.59/.60 FAQ: Why is this Ch