How severe is CVE-2025-0436?

CVE-2025-0436 has a CVSS v3 score of 8.8 (HIGH).

CVE-2025-0436

Name: chrome
Author: google

8.8HIGH

Integer overflow in Skia in Google Chrome prior to 132.0.6834.83 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

Publicado: 1/15/2025Actualizado: 4/21/2025

Descripción

Integer overflow in Skia in Google Chrome prior to 132.0.6834.83 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

Análisis IAImpulsado por IA

Productos Afectados

googlechrome

Referencias

https://chromereleases.googleblog.com/2025/01/stable-channel-update-for-desktop_14.html
Vendor Advisory
https://issues.chromium.org/issues/382786791
ExploitIssue Tracking