How severe is CVE-2025-0291?

CVE-2025-0291 has a CVSS v3 score of 8.8 (HIGH).

CVE-2025-0291

Name: chrome
Author: google

8.8HIGH

Type Confusion in V8 in Google Chrome prior to 131.0.6778.264 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

Published: 1/8/2025Updated: 2/11/2025

Description

Type Confusion in V8 in Google Chrome prior to 131.0.6778.264 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

AI AnalysisPowered by AI

Affected Products

googlechrome

References

https://chromereleases.googleblog.com/2025/01/stable-channel-update-for-desktop.html
Vendor Advisory
https://issues.chromium.org/issues/383356864
Permissions Required