Integer Overflow Vulnerability in Google Chrome's V8 Engine
CVE-2025-7656
Key Information:
Badges
What is CVE-2025-7656?
An integer overflow vulnerability in the V8 engine of Google Chrome prior to version 138.0.7204.157 can allow remote attackers to exploit heap corruption by crafting a malicious HTML page. This risk highlights the importance of maintaining updated browser versions and implementing robust security practices to protect against potential web-based exploits.
Affected Version(s)
Chrome 138.0.7204.157
News Articles
Cursor, Windsurf IDEs riddled with 94+ n-day Chromium vulnerabilities
The latest releases of Cursor and Windsurf integrated development environments are vulnerable to more than 94 known and patched security issues in the Chromium browser and the V8 JavaScript engine.
References
EPSS Score
8% chance of being exploited in the next 30 days.
CVSS V3.1
Timeline
- 👾
Exploit known to exist
- 📰
First article discovered by BleepingComputer
Vulnerability published
Vulnerability Reserved