CVE-2025-21262: Microsoft Edge (Chromium-based) Spoofing Vulnerability

CVE-2025-0434: Chromium: CVE-2025-0434 Out of bounds memory access in V8

CVE-2025-0448: Chromium: CVE-2025-0448 Inappropriate implementation in Compositing

CVE-2025-0447: Chromium: CVE-2025-0447 Inappropriate implementation in Navigation

CVE-2025-0446: Chromium: CVE-2025-0446 Inappropriate implementation in Extensions

**Are there any additional steps that I need to follow to be protected from this vulnerability?**

The changes to address this vulnerability updated Virtual Secure Mode components. The policy described in Guidance for blocking rollback of Virtualization-based Security (VBS) related security updates has been updated to account for the latest changes. If you deployed this policy, then you'll need to redeploy using the updated policy.

Headline

CVE-2025-21299: Windows Kerberos Security Feature Bypass Vulnerability

Microsoft Security Response Center: Latest News