CVE-2025-11215

Off by one error in V8 in Google Chrome prior to 141.0.7390.54 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: Medium)

• https://chromereleases.googleblog.com/2025/09/stable-channel-update-for-desktop_30.html
  Release NotesVendor Advisory
• https://issues.chromium.org/issues/439758498
  Issue TrackingPermissions Required