Google Chrome Chrome vulnerabilities
1,139 known vulnerabilities affecting google/chrome_chrome.
Total CVEs
1,139
CISA KEV
47
actively exploited
Public exploits
9
Exploited in wild
36
Severity breakdown
CRITICAL58HIGH621MEDIUM339LOW104UNKNOWN17
Vulnerabilities
Page 12 of 57
CVE-2025-10502HIGHCVSS 8.82025-09-17
CVE-2025-10502 [HIGH] Stable Channel Update for Desktop: CVE-2025-10502
Stable Channel Update for Desktop
CVE-2025-10502: Heap buffer overflow in ANGLE. Reported by Google Big Sleep on 2025-08-12 Google is aware that an exploit for CVE-2025-10585 exists in the wild
Severity: high
chrome
CVE-2024-50164HIGHCVSS 7.12025-09-03
CVE-2024-50164 [HIGH] Long Term Support Channel Update for ChromeOS: CVE-2024-50164
Long Term Support Channel Update for ChromeOS
CVE-2024-50164
chrome
CVE-2025-21703HIGHCVSS 7.82025-09-03
CVE-2025-21703 [HIGH] Long Term Support Channel Update for ChromeOS: CVE-2025-21703
Long Term Support Channel Update for ChromeOS
CVE-2025-21703
chrome
CVE-2025-40364HIGHCVSS 7.82025-09-03
CVE-2025-40364 [HIGH] Long Term Support Channel Update for ChromeOS: CVE-2025-40364
Long Term Support Channel Update for ChromeOS
CVE-2025-40364
chrome
CVE-2024-53141HIGHCVSS 7.82025-09-03
CVE-2024-53141 [HIGH] Long Term Support Channel Update for ChromeOS: CVE-2024-53141
Long Term Support Channel Update for ChromeOS
CVE-2024-53141
chrome
CVE-2025-21701MEDIUMCVSS 4.72025-09-03
CVE-2025-21701 [MEDIUM] Long Term Support Channel Update for ChromeOS: CVE-2025-21701
Long Term Support Channel Update for ChromeOS
CVE-2025-21701
chrome
CVE-2025-9865MEDIUMCVSS 5.42025-09-02
CVE-2025-9865 [MEDIUM] Stable Channel Update for Desktop: CVE-2025-9865
Stable Channel Update for Desktop
CVE-2025-9865: Inappropriate implementation in Toolbar. Reported by Khalil Zhani on 2025-08-07 [$4000][ 379337758 ] Medium CVE-2025-9866: Inappropriate implementation in Extensions
Reported by NDevTK on 2024-11-16 [$1000][ 415496161 ] Medium CVE-2025-9867: Inappropriate implementation in Downloads
Severity: medium
chrome
CVE-2025-12905LOWCVSS 5.42025-09-02
CVE-2025-12905 [LOW] Stable Channel Update for Desktop: CVE-2025-12905
Stable Channel Update for Desktop
CVE-2025-12905: Inappropriate implementation in Downloads. Reported by Tom Haas on 2025-07-12 [$1000][ 428455319 ] Low CVE-2025-12906: Inappropriate implementation in Permissions
Reported by Hafiizh on 2025-06-29 [$1500][ 427367145 ] Low CVE-2025-12907: Insufficient validation of untrusted input in Devtools
Severity: low
chrome
CVE-2025-12911LOWCVSS 4.32025-09-02
CVE-2025-12911 [LOW] Stable Channel Update for Desktop: CVE-2025-12911
Stable Channel Update for Desktop
CVE-2025-12911: Inappropriate implementation in Permissions. Reported by Hafiizh on 2025-06-10 [N/A][ 429440615 ] Low CVE-2025-13107: Inappropriate implementation in Compositing
Reported by Hafiizh on 2025-07-03 We would also like to thank all security researchers that worked with us during the development cycle to prevent security bugs from ever reaching the stable channel
Severity: low
chrome
CVE-2025-12908LOWCVSS 5.42025-09-02
CVE-2025-12908 [LOW] Stable Channel Update for Desktop: CVE-2025-12908
Stable Channel Update for Desktop
CVE-2025-12908: Insufficient validation of untrusted input in Downloads. Reported by Abhishek Kumar on 2025-05-31 [$1000][ 361116749 ] Low CVE-2025-12909: Insufficient policy enforcement in Devtools
Reported by Noam Gaash on 2024-08-20 [TBD][ 434977743 ] Low CVE-2025-12910: Inappropriate implementation in Passkeys
Severity: low
chrome
CVE-2025-9478CRITICALCVSS 8.82025-08-26
CVE-2025-9478 [CRITICAL] Stable Channel Update for Desktop: CVE-2025-9478
Stable Channel Update for Desktop
CVE-2025-9478: Use after free in ANGLE. Reported by Google Big Sleep on 2025-08-11 We would also like to thank all security researchers that worked with us during the development cycle to prevent security bugs from ever reaching the stable channel
Severity: critical
chrome
CVE-2025-7656HIGHCVSS 8.82025-08-20
CVE-2025-7656 [HIGH] Long Term Support Channel Update for ChromeOS: CVE-2025-7656
Long Term Support Channel Update for ChromeOS
CVE-2025-7656
chrome
CVE-2025-8010HIGHCVSS 8.82025-08-20
CVE-2025-8010 [HIGH] Long Term Support Channel Update for ChromeOS: CVE-2025-8010
Long Term Support Channel Update for ChromeOS
CVE-2025-8010
chrome
CVE-2025-7657HIGHCVSS 8.82025-08-20
CVE-2025-7657 [HIGH] Long Term Support Channel Update for ChromeOS: CVE-2025-7657
Long Term Support Channel Update for ChromeOS
CVE-2025-7657
chrome
CVE-2025-8901HIGHCVSS 8.82025-08-19
CVE-2025-8901 [HIGH] Stable Channel Update for ChromeOS / ChromeOS Flex: CVE-2025-8901
Stable Channel Update for ChromeOS / ChromeOS Flex
CVE-2025-8901
chrome
CVE-2025-8880HIGHCVSS 8.82025-08-19
CVE-2025-8880 [HIGH] Stable Channel Update for ChromeOS / ChromeOS Flex: CVE-2025-8880
Stable Channel Update for ChromeOS / ChromeOS Flex
CVE-2025-8880
chrome
CVE-2025-9132HIGHCVSS 8.82025-08-19
CVE-2025-9132 [HIGH] Stable Channel Update for Desktop: CVE-2025-9132
Stable Channel Update for Desktop
CVE-2025-9132: Out of bounds write in V8. Reported by Google Big Sleep on 2025-08-04 We would also like to thank all security researchers that worked with us during the development cycle to prevent security bugs from ever reaching the stable channel
Severity: high
chrome
CVE-2025-8578HIGHCVSS 8.82025-08-19
CVE-2025-8578 [HIGH] Stable Channel Update for ChromeOS / ChromeOS Flex: CVE-2025-8578
Stable Channel Update for ChromeOS / ChromeOS Flex
CVE-2025-8578
chrome
CVE-2025-8580MEDIUMCVSS 4.32025-08-19
CVE-2025-8580 [MEDIUM] Stable Channel Update for ChromeOS / ChromeOS Flex: CVE-2025-8580
Stable Channel Update for ChromeOS / ChromeOS Flex
CVE-2025-8580
chrome
CVE-2025-8582MEDIUMCVSS 4.32025-08-19
CVE-2025-8582 [MEDIUM] Stable Channel Update for ChromeOS / ChromeOS Flex: CVE-2025-8582
Stable Channel Update for ChromeOS / ChromeOS Flex
CVE-2025-8582
chrome