How severe is CVE-2025-3619?

CVE-2025-3619 has a CVSS v3 score of 8.8 (HIGH).

CVE-2025-3619

Name: windows
Author: microsoft

8.8HIGH

Heap buffer overflow in Codecs in Google Chrome on Windows prior to 135.0.7049.95 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity:

Published: 4/16/2025Updated: 7/15/2025

Description

Heap buffer overflow in Codecs in Google Chrome on Windows prior to 135.0.7049.95 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical)

AI AnalysisPowered by AI

Affected Products

googlechrome

microsoftwindows

References

https://chromereleases.googleblog.com/2025/04/stable-channel-update-for-desktop_15.html
Vendor Advisory
https://issues.chromium.org/issues/409619251
Issue TrackingPermissions Required