UI Spoofing Vulnerability in Google Chrome Browser
CVE-2025-12444

Currently unrated

Key Information:

Vendor: Google
Status: Chrome
Vendor: CVE Published:; 10 November 2025

What is CVE-2025-12444?

A vulnerability in Google Chrome affects the security user interface when using fullscreen features. An attacker can exploit this flaw by convincing a user to perform specific gestures, enabling UI spoofing through a specially crafted HTML page. This manipulation can mislead users, potentially compromising their security. Keeping Chrome updated is essential to protect against these risks.

Affected Version(s)

Chrome 142.0.7444.59

References

https://chromereleases.googleblog.com/2025/10/stable-chan...

https://issues.chromium.org/issues/390571618

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 10, 2025
Vulnerability Reserved
Oct 28, 2025

JSON