Out of Bounds Read in V8 of Google Chrome by Google
CVE-2025-2137

8.8HIGH

Key Information:

Vendor: Google
Status: Chrome
Vendor: CVE Published:; 10 March 2025

Summary

An out of bounds read vulnerability in the V8 engine of Google Chrome allows a remote attacker to execute an exploit via a crafted HTML page, potentially leading to unauthorized memory access. This flaw could result in sensitive information disclosure, as it permits attackers to access areas of memory that should remain restricted. Users are encouraged to update their browsers to the latest version to mitigate this risk.

Affected Version(s)

Chrome 134.0.6998.88

References

https://chromereleases.googleblog.com/2025/03/stable-chan...

https://issues.chromium.org/issues/398999390

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Mar 10, 2025
Vulnerability Reserved
Mar 9, 2025