CVE-2025-0611Heap-based Buffer Overflow in Google Chrome

CWE-122Heap-based Buffer Overflow9 documents8 sources
Severity
8.2HIGHNVD
EPSS
0.6%
top 29.48%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Google ChromeChromiumPaloalto Prisma Browser
Timeline
PublishedJan 22
Latest updateFeb 26

Description

Object corruption in V8 in Google Chrome prior to 132.0.6834.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:HExploitability: 3.9 | Impact: 4.2

Affected Packages4 packages

CVEListV5google/chrome132.0.6834.110132.0.6834.110
NVDgoogle/chrome< 132.0.6834.110
Debianchromium/chromium< 132.0.6834.110-1~deb12u1+2

🔴Vulnerability Details

3
OSV
CVE-2025-0611: Object corruption in V8 in Google Chrome prior to 1322025-01-22
CVEList
CVE-2025-0611: Object corruption in V8 in Google Chrome prior to 1322025-01-22
GHSA
GHSA-83vc-v46q-mv3w: Object corruption in V8 in Google Chrome prior to 1322025-01-22

📋Vendor Advisories

5
Chrome
Long Term Support Channel Update for ChromeOS: CVE-2025-06112025-02-26
Palo Alto
PAN-SA-2025-0004 Chromium: Monthly Vulnerability Update (February 2025)2025-02-12
Microsoft
Chromium: CVE-2025-0612 Out of bounds memory access in V82025-01-14
Microsoft
Chromium: CVE-2025-0611 Object corruption in V82025-01-14
Debian
CVE-2025-0611: chromium - Object corruption in V8 in Google Chrome prior to 132.0.6834.110 allowed a remot...2025
CVE-2025-0611 — Heap-based Buffer Overflow in Google | cvebase