Heap Corruption Vulnerability in Google Chrome
CVE-2025-13721

7.5HIGH

Key Information:

Vendor

Google
Status
Chrome
Vendor
CVE Published:
2 December 2025

What is CVE-2025-13721?

A race condition vulnerability in the V8 engine of Google Chrome allows remote attackers to exploit heap corruption by delivering a specially crafted HTML page. This can lead to potential compromise of the affected system, making it crucial for users to update to the latest version of Google Chrome to mitigate this risk.

Affected Version(s)

Chrome 143.0.7499.41

References

https://chromereleases.googleblog.com/2025/12/stable-chan...
https://issues.chromium.org/issues/355120682

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.
CVE-2025-13721 : Heap Corruption Vulnerability in Google Chrome