Security
Headlines

Headlines Latest CVEs

Tag

#microsoft

Eclipse Foundation Revokes Leaked Open VSX Tokens Following Wiz Discovery

Eclipse Foundation, which maintains the open-source Open VSX project, said it has taken steps to revoke a small number of tokens that were leaked within Visual Studio Code (VS Code) extensions published in the marketplace. The action comes following a report from cloud security company Wiz earlier this month, which found several extensions from both Microsoft's VS Code Marketplace and Open VSX

3 months ago

The Hacker News

#google #microsoft #The Hacker News

CVE-2025-12441: Chromium: CVE-2025-12441 Out of bounds read in V8

**What is the version information for this release?** Microsoft Edge Version Date Released Based on Chromium Version 142.0.3595.53 10/31/2025 142.0.7445.59/.60

3 months ago

Microsoft Security Response Center

#microsoft #chrome #Microsoft Edge (Chromium-based)#Security Vulnerability

CVE-2025-12440: Chromium: CVE-2025-12440 Inappropriate implementation in Autofill

**What is the version information for this release?** Microsoft Edge Version Date Released Based on Chromium Version 142.0.3595.53 10/31/2025 142.0.7445.59/.60

3 months ago

Microsoft Security Response Center

#microsoft #chrome #Microsoft Edge (Chromium-based)#Security Vulnerability

CVE-2025-12439: Chromium: CVE-2025-12439 Inappropriate implementation in App-Bound Encryption

**What is the version information for this release?** Microsoft Edge Version Date Released Based on Chromium Version 142.0.3595.53 10/31/2025 142.0.7445.59/.60

3 months ago

Microsoft Security Response Center

#microsoft #chrome #Microsoft Edge (Chromium-based)#Security Vulnerability

CVE-2025-12438: Chromium: CVE-2025-12438 Use after free in Ozone

**What is the version information for this release?** Microsoft Edge Version Date Released Based on Chromium Version 142.0.3595.53 10/31/2025 142.0.7445.59/.60

3 months ago

Microsoft Security Response Center

#microsoft #chrome #Microsoft Edge (Chromium-based)#Security Vulnerability

CVE-2025-12437: Chromium: CVE-2025-12437 Use after free in PageInfo

**What is the version information for this release?** Microsoft Edge Version Date Released Based on Chromium Version 142.0.3595.53 10/31/2025 142.0.7445.59/.60

3 months ago

Microsoft Security Response Center

#microsoft #chrome #Microsoft Edge (Chromium-based)#Security Vulnerability

CVE-2025-12436: Chromium: CVE-2025-12436 Policy bypass in Extensions

**What is the version information for this release?** Microsoft Edge Version Date Released Based on Chromium Version 142.0.3595.53 10/31/2025 142.0.7445.59/.60

3 months ago

Microsoft Security Response Center

#microsoft #chrome #Microsoft Edge (Chromium-based)#Security Vulnerability

CVE-2025-12435: Chromium: CVE-2025-12435 Incorrect security UI in Omnibox

**What is the version information for this release?** Microsoft Edge Version Date Released Based on Chromium Version 142.0.3595.53 10/31/2025 142.0.7445.59/.60

3 months ago

Microsoft Security Response Center

#microsoft #chrome #Microsoft Edge (Chromium-based)#Security Vulnerability

CVE-2025-12434: Chromium: CVE-2025-12434 Race in Storage

**What is the version information for this release?** Microsoft Edge Version Date Released Based on Chromium Version 142.0.3595.53 10/31/2025 142.0.7445.59/.60

3 months ago

Microsoft Security Response Center

#microsoft #chrome #Microsoft Edge (Chromium-based)#Security Vulnerability

CVE-2025-12036: Chromium: CVE-2025-12036 Inappropriate implementation in V8

**What is the version information for this release?** Microsoft Edge Version Date Released Based on Chromium Version 142.0.3595.53 10/31/2025 142.0.7445.59/.60

3 months ago

Microsoft Security Response Center

#microsoft #chrome #Microsoft Edge (Chromium-based)#Security Vulnerability