How severe is CVE-2025-4096?

CVE-2025-4096 has a CVSS v3 score of 8.8 (HIGH).

CVE-2025-4096

Name: chrome
Author: google

8.8HIGH

Heap buffer overflow in HTML in Google Chrome prior to 136.0.7103.59 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

Publicado: 5/5/2025Actualizado: 5/28/2025

Descripción

Heap buffer overflow in HTML in Google Chrome prior to 136.0.7103.59 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

Análisis IAImpulsado por IA

Productos Afectados

googlechrome

Referencias

https://chromereleases.googleblog.com/2025/04/stable-channel-update-for-desktop_29.html
Vendor Advisory
https://issues.chromium.org/issues/409911705
Permissions Required