Use After Free Vulnerability in Google Chrome Affecting Safe Browsing
CVE-2025-11756

8.8HIGH

Key Information:

Vendor

Google
Status
Chrome
Vendor
CVE Published:
6 November 2025

Badges

๐Ÿ“ฐ News Worthy

What is CVE-2025-11756?

A use after free vulnerability in the Safe Browsing component of Google Chrome allows a remote attacker, who has taken control of the renderer process, to potentially execute out of bounds memory access by using a specially crafted HTML page. This could lead to unauthorized actions or access to sensitive information.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Chrome 141.0.7390.107

News Articles

favicon imageeSecurity Planet

Google Fixes Critical Chrome Remote Code Execution Bug

Google patches a Chrome Safe Browsing flaw (CVE-2025-11756) that lets attackers execute code remotely. Users urged to update immediately.

References

https://chromereleases.googleblog.com/2025/10/stable-chan...
https://issues.chromium.org/issues/447192722

CVSS V3.1

Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • ๐Ÿ“ฐ

    First article discovered by eSecurity Planet

  • Vulnerability Reserved

JSON
.