CVE-2025-10502 — Heap-based Buffer Overflow in Google Chrome
Severity
8.8HIGHNVD
EPSS
0.1%
top 71.85%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedSep 24
Latest updateOct 8
Description
Heap buffer overflow in ANGLE in Google Chrome prior to 140.0.7339.185 allowed a remote attacker to potentially exploit heap corruption via malicious network traffic. (Chromium security severity: High)
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9
Affected Packages4 packages
🔴Vulnerability Details
3📋Vendor Advisories
4Debian▶
CVE-2025-10502: chromium - Heap buffer overflow in ANGLE in Google Chrome prior to 140.0.7339.185 allowed a...↗2025