Heap Buffer Overflow in Google Chrome Affects Users with libaom Component
CVE-2025-8879

8.8HIGH

Key Information:

Vendor: Google
Status: Chrome
Vendor: CVE Published:; 13 August 2025

What is CVE-2025-8879?

A heap buffer overflow vulnerability exists in the libaom component of Google Chrome. This flaw can be exploited by remote attackers, potentially leading to heap corruption through a specially crafted set of gestures. It is crucial for users and web developers to remain vigilant and update to the latest version of Google Chrome to mitigate this security risk.

Affected Version(s)

Chrome 139.0.7258.127

References

https://chromereleases.googleblog.com/2025/08/stable-chan...

https://issues.chromium.org/issues/432035817

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 13, 2025
Vulnerability Reserved
Aug 12, 2025