Type Confusion Vulnerability in Google Chrome
CVE-2025-13230

8.8HIGH

Key Information:

Vendor

Google
Status
Chrome
Vendor
CVE Published:
17 November 2025

What is CVE-2025-13230?

A type confusion vulnerability in Google Chrome's V8 engine could allow remote attackers to exploit heap corruption by crafting malicious HTML pages. This could lead to unauthorized access or manipulation of data, putting users' systems at risk. It is essential for users to keep their browsers updated to mitigate such vulnerabilities.

Affected Version(s)

Chrome 142.0.7444.59

References

https://chromereleases.googleblog.com/2025/10/stable-chan...
https://issues.chromium.org/issues/446124892

CVSS V3.1

Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.
CVE-2025-13230 : Type Confusion Vulnerability in Google Chrome