Out of bounds read and write in V8 in Google Chrome prior to 137.0.7151.68 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
References
Link | Resource |
---|---|
https://chromereleases.googleblog.com/2025/06/stable-channel-update-for-desktop.html | Release Notes |
https://issues.chromium.org/issues/420636529 | Permissions Required |
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-5419 | Third Party Advisory |
Configurations
History
23 Jun 2025, 18:29
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:microsoft:edge_chromium:*:*:*:*:*:*:*:* | |
References | () https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-5419 - Third Party Advisory | |
First Time |
Microsoft
Microsoft edge Chromium |
23 Jun 2025, 12:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
References |
|
06 Jun 2025, 01:00
Type | Values Removed | Values Added |
---|---|---|
References |
|
05 Jun 2025, 14:10
Type | Values Removed | Values Added |
---|---|---|
First Time |
Google chrome
|
|
References | () https://chromereleases.googleblog.com/2025/06/stable-channel-update-for-desktop.html - Release Notes | |
References | () https://issues.chromium.org/issues/420636529 - Permissions Required | |
CPE | cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:* |
03 Jun 2025, 14:15
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-125 | |
Summary |
|
03 Jun 2025, 03:15
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 8.8 |
CWE | CWE-787 |
03 Jun 2025, 00:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2025-06-03 00:15
Updated : 2025-06-23 18:29
NVD link : CVE-2025-5419
Mitre link : CVE-2025-5419
CVE.ORG link : CVE-2025-5419
JSON object : View
Products Affected
- chrome
microsoft
- edge_chromium