Out of Bounds Read in V8 of Google Chrome by Google
CVE-2025-2137

8.8HIGH

Key Information:

Vendor
Google
Status
Vendor
CVE Published:
10 March 2025

Summary

An out of bounds read vulnerability in the V8 engine of Google Chrome allows a remote attacker to execute an exploit via a crafted HTML page, potentially leading to unauthorized memory access. This flaw could result in sensitive information disclosure, as it permits attackers to access areas of memory that should remain restricted. Users are encouraged to update their browsers to the latest version to mitigate this risk.

Affected Version(s)

Chrome 134.0.6998.88

References

CVSS V3.1

Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.