Log inCVE-2026-33118 Microsoft Edge (Chromium-based) Spoofing Vulnerability
15 Juni 2026 om 16:00
Updated an acknowledgement. This is an informational change only.
Normale weergave
Ontvangen β 15 Juni 2026
β
Microsoft Security
Chromium: CVE-2026-12019 Out of bounds writeΒ Codecs
15 Juni 2026 om 16:00
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/search/label/Desktop%20Update) for more information.
Chromium: CVE-2026-12018 Inappropriate implementationΒ Mojo
15 Juni 2026 om 16:00
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/search/label/Desktop%20Update) for more information.
Chromium: CVE-2026-12017 Insufficient validation of untrusted inputΒ Extensions
15 Juni 2026 om 16:00
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/search/label/Desktop%20Update) for more information.
Chromium: CVE-2026-12016 Insufficient validation of untrusted inputΒ DevTools
15 Juni 2026 om 16:00
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/search/label/Desktop%20Update) for more information.
Chromium: CVE-2026-12015 Use after freeΒ Autofill
15 Juni 2026 om 16:00
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/search/label/Desktop%20Update) for more information.
Chromium: CVE-2026-12014 Use after freeΒ Cast
15 Juni 2026 om 16:00
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/search/label/Desktop%20Update) for more information.
Chromium: CVE-2026-12013 Use after freeΒ Media
15 Juni 2026 om 16:00
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/search/label/Desktop%20Update) for more information.
Chromium: CVE-2026-12012 Use after freeΒ Network
15 Juni 2026 om 16:00
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/search/label/Desktop%20Update) for more information.
Chromium: CVE-2026-12011 Use after freeΒ WebMIDI
15 Juni 2026 om 16:00
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/search/label/Desktop%20Update) for more information.
Chromium: CVE-2026-12010 Heap buffer overflowΒ GPU
15 Juni 2026 om 16:00
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/search/label/Desktop%20Update) for more information.
-
Microsoft Security
- Chromium: CVE-2026-12009 Insufficient validation of untrusted inputΒ Accessibility
Chromium: CVE-2026-12009 Insufficient validation of untrusted inputΒ Accessibility
15 Juni 2026 om 16:00
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/search/label/Desktop%20Update) for more information.
Chromium: CVE-2026-12008 Use after freeΒ DigitalCredentials
15 Juni 2026 om 16:00
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/search/label/Desktop%20Update) for more information.
Chromium: CVE-2026-12007 Use after freeΒ Core
15 Juni 2026 om 16:00
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/search/label/Desktop%20Update) for more information.
CVE-2026-6253 proxy credentials leak over redirect-to proxy
15 Juni 2026 om 10:40
Information published.
CVE-2026-5545 wrong reuse of HTTP Negotiate connection
15 Juni 2026 om 10:40
Information published.
CVE-2026-6429 netrc credential leak with reused proxy connection
15 Juni 2026 om 10:40
Information published.
CVE-2026-46433 lldpd: Heap OOB Read in VLAN Decapsulation memmove
15 Juni 2026 om 10:42
Information published.
-
- CVE-2026-49762 Unbounded integer parsing in the Version module enables CPU and memory exhaustion denial of service
CVE-2026-49762 Unbounded integer parsing in the Version module enables CPU and memory exhaustion denial of service
15 Juni 2026 om 10:42
Information published.
-
- CVE-2026-7774 tarfile.data_filter path traversal bypass allows writing outside the extraction directory
CVE-2026-7774 tarfile.data_filter path traversal bypass allows writing outside the extraction directory
15 Juni 2026 om 10:41
Information published.
-
- CVE-2026-11526 GD versions before 2.86 for Perl allow OS command injection and file overwrite via a 2-arg open() of filename arguments in _make_filehandle
CVE-2026-11526 GD versions before 2.86 for Perl allow OS command injection and file overwrite via a 2-arg open() of filename arguments in _make_filehandle
15 Juni 2026 om 10:02
Information published.
CVE-2026-45445 AES-OCB IV Ignored on EVP_Cipher() Path
15 Juni 2026 om 10:02
Information published.
-
- CVE-2026-42768 Multi-RecipientInfo Bleichenbacher Oracle in CMS_decrypt() and PKCS7_decrypt()
CVE-2026-42768 Multi-RecipientInfo Bleichenbacher Oracle in CMS_decrypt() and PKCS7_decrypt()
15 Juni 2026 om 10:01
Information published.
Ontvangen β 13 Juni 2026
β
Microsoft Security
CVE-2026-10846 Insufficient verification that responses belong to a query
13 Juni 2026 om 10:43
Information published.
CVE-2026-11822 SQLite before 3.53.2 Memory Corruption in FTS5 Extension
13 Juni 2026 om 10:43
Information published.
-
- CVE-2026-11824 SQLite before 3.53.2 Heap Buffer Overflow via FTS5 fts5ChunkIterate
CVE-2026-11824 SQLite before 3.53.2 Heap Buffer Overflow via FTS5 fts5ChunkIterate
13 Juni 2026 om 10:43
Information published.
-
- CVE-2026-40034 gitoxide - Command Injection via Partial .gitmodules Override in gix-submodule
CVE-2026-40034 gitoxide - Command Injection via Partial .gitmodules Override in gix-submodule
13 Juni 2026 om 10:43
Information published.
CVE-2026-5222 Cargo can be coerced to share credentials between registries
13 Juni 2026 om 10:42
Information published.
-
- CVE-2026-5223 Crates in third party registries can override the cached source of other crates
CVE-2026-5223 Crates in third party registries can override the cached source of other crates
13 Juni 2026 om 10:42
Information published.
CVE-2026-5545 wrong reuse of HTTP Negotiate connection
13 Juni 2026 om 10:42
Information published.
