Kaspersky ID:
KLA78988
Дата обнаружения:
14/01/2025
Обновлено:
25/03/2025

Описание

Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to spoof user interface, cause denial of service, execute arbitrary code, gain privileges, obtain sensitive information.

Below is a complete list of vulnerabilities:

  1. Security UI vulnerability can be exploited to spoof user interface.
  2. Heap buffer overflow vulnerability in Skia can be exploited to cause denial of service.
  3. Type confusion vulnerability in V8 can be exploited to cause denial of service.
  4. An elevation of privilege vulnerability in Extensions Google Chrome can be exploited remotely to gain privileges.
  5. Heap buffer overflow vulnerability in Google Chrome can be exploited to cause denial of service.
  6. Heap buffer overflow vulnerability in Tracing Google Chrome can be exploited to cause denial of service.
  7. Information disclosure vulnerability in Fenced Frames Google Chrome can be exploited to obtain sensitive information.
  8. An elevation of privilege vulnerability in Navigation Google Chrome can be exploited remotely to gain privileges.

Первичный источник обнаружения

Эксплуатация

Public exploits exist for this vulnerability.

Связанные продукты

Список CVE

  • CVE-2025-0439
    high
  • CVE-2025-0435
    high
  • CVE-2025-0436
    critical
  • CVE-2025-0434
    critical
  • CVE-2025-0443
    critical
  • CVE-2025-0437
    critical
  • CVE-2025-0440
    high
  • CVE-2025-0448
    warning
  • CVE-2025-0438
    critical
  • CVE-2025-0441
    high
  • CVE-2025-0447
    critical
  • CVE-2025-0446
    warning
  • CVE-2025-0442
    high

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com

Нашли неточность в описании этой уязвимости? Дайте нам знать!
Kaspersky IT Security Calculator:
Оцените ваш профиль кибербезопасности
Узнать больше
Встречай новый Kaspersky!
Каждая минута твоей онлайн-жизни заслуживает топовой защиты.
Узнать больше
Confirm changes?
Your message has been sent successfully.