How severe is CVE-2025-0436?

CVE-2025-0436 has a CVSS v3 score of 8.8 (HIGH).

CVE-2025-0436

Name: chrome
Author: google

8.8HIGH

Integer overflow in Skia in Google Chrome prior to 132.0.6834.83 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

Veröffentlicht: 1/15/2025Aktualisiert: 4/21/2025

Beschreibung

Integer overflow in Skia in Google Chrome prior to 132.0.6834.83 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

KI-AnalyseKI-gestützt

Betroffene Produkte

googlechrome

Referenzen

https://chromereleases.googleblog.com/2025/01/stable-channel-update-for-desktop_14.html
Vendor Advisory
https://issues.chromium.org/issues/382786791
ExploitIssue Tracking