Published: 19/02/2025 Updated: 07/04/2025

Chrome V8 Heap Buffer Overflow Enables Remote Code Execution via Crafted HTML

A heap buffer overflow vulnerability exists in the V8 engine of Google Chrome before version 133.0.6943.126. This security issue could enable a remote attacker to potentially cause heap corruption through a specially crafted HTML page. The vulnerability is rated as high severity by Chromium security researchers.

Vulnerable Product	Search on Vulmon	Subscribe to Product
google chrome

The Stable channel has been updated to 13306943126/127 for Windows, Mac and 13306943126 for Linux which will roll out over the coming days/weeks A full list of changes in this build is available in the Log Security Fixes and RewardsNote: Access to bug details and links may be kept restricted until a majority of use ...

The Stable channel has been updated to 13306943141/142 for Windows, Mac and 13306943141 for Linux which will roll out over the coming days/weeks A full list of changes in this build is available in the LogSecurity Fixes and RewardsNote: Access to bug details and links may be kept restricted until a majority of users are updated w ...

CWE-122 CWE-122 https://nvd.nist.gov https://chromereleases.googleblog.com/2025/02/stable-channel-update-for-desktop_18.html https://www.first.org/epss https://chromereleases.googleblog.com/2025/02/stable-channel-update-for-desktop_18.html https://issues.chromium.org/issues/394350433

CVE-2025-0999

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect