UI Spoofing Vulnerability in Google Chrome for Android
CVE-2025-1917
4.3MEDIUM
Summary
A vulnerability in the implementation of the Browser UI in Google Chrome for Android allows remote attackers to exploit UI spoofing via a specially crafted HTML page. This flaw could result in misleading visual cues for users, potentially compromising their experience and security while navigating the web. Ensuring that browsers are kept up-to-date is critical in mitigating such threats.
Affected Version(s)
Chrome 134.0.6998.35
References
CVSS V3.1
Score:
4.3
Severity:
MEDIUM
Confidentiality:
None
Integrity:
Low
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved