CVE-2025-4096 — Heap-based Buffer Overflow in Google Chrome

CWE-122 — Heap-based Buffer Overflow CWE-121 — Stack-based Buffer Overflow CWE-306 — Missing Authentication for Critical Function CWE-749 — Exposed Dangerous Method or Function CWE-942 — Permissive Cross-domain Security Policy with Untrusted Domains CWE-911 — Improper Update of Reference Count20 documents11 sources

Severity

8.8HIGHNVD

EPSS

0.2%

top 58.54%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Google Chrome Chromium Linux Kernel +2 more

Timeline

PublishedMay 5

Latest updateJan 13

Description

Heap buffer overflow in HTML in Google Chrome prior to 136.0.7103.59 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages6 packages

▶CVEListV5google/chrome136.0.7103.59 — 136.0.7103.59

▶NVDgoogle/chrome< 136.0.7103.59

▶Debianchromium/chromium< 136.0.7103.59-2~deb12u2+2

▶Linuxlinux/linux_kernel6.17.0 — 6.17.3+7

▶PyPIericsson/codechecker< 6.26.2

🔴Vulnerability Details

GHSA

OpenCode's Unauthenticated HTTP Server Allows Arbitrary Command Execution↗2026-01-13

▶

OSV

btrfs: fix symbolic link reading when bs > ps↗2025-11-12

▶

OSV

f2fs: fix to truncate first page in error path of f2fs_truncate()↗2025-11-12

▶

GHSA

CodeChecker has a buffer overflow in the log command↗2025-09-22

▶

OSV

block: fix race between set_blocksize and read paths↗2025-06-18

▶

📋Vendor Advisories

Red Hat

kernel: f2fs: fix to truncate first page in error path of f2fs_truncate()↗2025-11-12

▶

Red Hat

kernel: mm: fix uprobe pte be overwritten when expanding vma↗2025-07-04

▶

Palo Alto

PAN-SA-2025-0009 Chromium: Monthly Vulnerability Update (May 2025)↗2025-05-14

▶

Microsoft

Chromium: CVE-2025-4096 Heap buffer overflow in HTML↗2025-05-13

▶

Chrome

Stable Channel Update for ChromeOS / ChromeOS Flex: CVE-2025-4096↗2025-05-13

▶

🕵️Threat Intelligence

Bleepingcomputer

Microsoft May 2025 Patch Tuesday fixes 5 exploited zero-days, 72 flaws↗2025-05-13

▶