Peter Leibling – Seite 651

Chromium: CVE-2025-8582 Insufficient validation of untrusted input in DOM

Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.

Chromium: CVE-2025-8581 Inappropriate implementation in Extensions

Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.

Chromium: CVE-2025-8580 Inappropriate implementation in Filesystems

Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.

Chromium: CVE-2025-8579 Inappropriate implementation in Gemini Live in Chrome

Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.

Chromium: CVE-2025-8578 Use after free in Cast

Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.

Chromium: CVE-2025-8583 Inappropriate implementation in Permissions

Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.

Sicherheitslücken: Angreifer können IBM Tivoli Monitoring crashen lassen

In einer aktuellen Version haben die Entwickler IBM Tivoli Monitoring vor möglichen Attacken geschützt.

[NEU] [hoch] Microsoft Exchange Server: Schwachstelle ermöglicht Privilegieneskalation

Ein entfernter, authentisierter Angreifer kann eine Schwachstelle in Microsoft Exchange Server ausnutzen, um seine Privilegien zu erhöhen.

[NEU] [mittel] Cisco Identity Services Engine (ISE): Mehrere Schwachstellen

Ein Angreifer kann mehrere Schwachstellen in Cisco Identity Services Engine (ISE) ausnutzen, um einen Cross-Site Scripting Angriff durchzuführen, und um Sicherheitsvorkehrungen zu umgehen.

[NEU] [mittel] IBM Security Guardium: Schwachstelle ermöglicht Offenlegung von Informationen

Ein entfernter, anonymer Angreifer kann eine Schwachstelle in IBM Security Guardium ausnutzen, um Informationen offenzulegen.

Autor: Peter Leibling

Chromium: CVE-2025-8582 Insufficient validation of untrusted input in DOM

Chromium: CVE-2025-8581 Inappropriate implementation in Extensions

Chromium: CVE-2025-8580 Inappropriate implementation in Filesystems

Chromium: CVE-2025-8579 Inappropriate implementation in Gemini Live in Chrome

Chromium: CVE-2025-8578 Use after free in Cast

Chromium: CVE-2025-8583 Inappropriate implementation in Permissions

Sicherheitslücken: Angreifer können IBM Tivoli Monitoring crashen lassen

[NEU] [hoch] Microsoft Exchange Server: Schwachstelle ermöglicht Privilegieneskalation

[NEU] [mittel] Cisco Identity Services Engine (ISE): Mehrere Schwachstellen

[NEU] [mittel] IBM Security Guardium: Schwachstelle ermöglicht Offenlegung von Informationen

Suchen