CVE-2025-25000
published 2025-04-04CVE-2025-25000: Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.
high8.8CVSS 3.1
AVNACLPRNUIRSUCHIHAH
Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | edge_chromium | < 135.0.3179.54 | 135.0.3179.54 |
| microsoft | microsoft_edge | >= 1.0.0.0 < 135.0.3179.54 | 135.0.3179.54 |
| msrc | microsoft_edge | — | — |