Use After Free Vulnerability in Google Chrome Lens Component
CVE-2025-2476

Currently unrated

Key Information:

Vendor

Google
Status
Chrome
Vendor
CVE Published:
19 March 2025

What is CVE-2025-2476?

A use after free vulnerability exists in the Lens component of Google Chrome, allowing an attacker to exploit heap corruption through specially crafted HTML content. This flaw poses a risk to user security, enabling potential unauthorized actions if a user visits a compromised page.

Affected Version(s)

Chrome 134.0.6998.117

References

https://chromereleases.googleblog.com/2025/03/stable-chan...
https://issues.chromium.org/issues/401029609

EPSS Score

6% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2025-2476 : Use After Free Vulnerability in Google Chrome Lens Component