UI Spoofing Vulnerability in Google Chrome on Android
CVE-2025-0435
6.5MEDIUM
Summary
A vulnerability in Google Chrome on Android before version 132.0.6834.83 allows remote attackers to exploit UI spoofing techniques. By crafting a malicious HTML page, an attacker can manipulate the user interface, potentially misleading users into unwittingly divulging sensitive information or executing unintended actions. This vulnerability highlights the importance of keeping browser versions up-to-date to mitigate exposure to such security risks.
Affected Version(s)
Chrome 132.0.6834.83
References
CVSS V3.1
Score:
6.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
High
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved