on September 24, 2025 at 7:00 am — CVE-2025-55322 OmniParser Remote Code Execution Vulnerability
Binding to an unrestricted ip address in GitHub allows an unauthorized attacker to execute code over a network.
on September 19, 2025 at 7:00 am — Chromium: CVE-2025-10501 Use after free in WebRTC
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.
on September 19, 2025 at 7:00 am — Chromium: CVE-2025-10501 Use after free in WebRTC Read More »
on September 19, 2025 at 7:00 am — Chromium: CVE-2025-10585 Type Confusion in V8
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information. Google is aware that an exploit for CVE-2025-10585 exists in the wild.
on September 19, 2025 at 7:00 am — Chromium: CVE-2025-10585 Type Confusion in V8 Read More »
on September 19, 2025 at 7:00 am — Chromium: CVE-2025-10502 Heap buffer overflow in ANGLE
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.
on September 19, 2025 at 7:00 am — Chromium: CVE-2025-10500 Use after free in Dawn
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.
on September 19, 2025 at 7:00 am — Chromium: CVE-2025-10500 Use after free in Dawn Read More »
on September 18, 2025 at 7:00 am — CVE-2025-59215 Windows Graphics Component Elevation of Privilege Vulnerability
Use after free in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally.
on September 18, 2025 at 7:00 am — CVE-2025-59216 Windows Graphics Component Elevation of Privilege Vulnerability
Concurrent execution using shared resource with improper synchronization (‘race condition’) in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally.
on September 18, 2025 at 7:00 am — CVE-2025-59220 Windows Bluetooth Service Elevation of Privilege Vulnerability
Concurrent execution using shared resource with improper synchronization (‘race condition’) in Windows Bluetooth Service allows an authorized attacker to elevate privileges locally.