Autor: Peter Leibling

CVE-2025-59272 Copilot Spoofing Vulnerability

Information published.

CVE-2025-59247 Azure PlayFab Elevation of Privilege Vulnerability

Information published.

CVE-2025-59286 Copilot Spoofing Vulnerability

Information published.

CVE-2025-55321 Azure Monitor Log Analytics Spoofing Vulnerability

Improper neutralization of input during web page generation (‚cross-site scripting‘) in Azure Monitor allows an authorized attacker to perform spoofing over a network.

CVE-2025-59252 M365 Copilot Spoofing Vulnerability

Information published.

CVE-2025-59271 Redis Enterprise Elevation of Privilege Vulnerability

Information published.

Datenleck bei Sonicwall: Alle Cloud-Backups von Firewalls gestohlen

Hieß es zunächst, es seien nur wenige Prozent der Sicherungsdaten betroffen, wird nun klar: Es sind tatsächlich 100 Prozent – Admins sollten handeln.

Chromium: CVE-2025-11460 Use after free in Storage

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.

Chromium: CVE-2025-11458 Heap buffer overflow in Sync

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.

[UPDATE] [kritisch] Redis: Mehrere Schwachstellen

Ein Angreifer kann mehrere Schwachstellen in Redis ausnutzen, um beliebigen Programmcode auszuführen, um Daten zu manipulieren, um einen Denial of Service Angriff durchzuführen, und um Informationen offenzulegen.

©  2026 Leibling.de. Erstellt mit WordPress und dem Highlight Theme