CVE Details
Basic Information
| Title | |
|---|---|
| Type | cve |
| Published | 2025-05-27T20:43:04.737Z |
| Last Seen |
Product Information
| Vendor | |
|---|---|
| Product | Chrome |
| Version | 137.0.7151.55 |
CVSS Information
| Base Score | 0.0 () |
|---|---|
| Attack Vector | |
| Confidentiality Impact | |
| Integrity Impact | |
| Availability Impact |
AI Analysis
| AI Description | A use-after-free vulnerability in libvpx, a component of Google Chrome, can be exploited by a remote attacker to potentially corrupt the heap via a specially crafted HTML page. This could lead to arbitrary code execution or a denial of service. The vulnerability affects versions prior to 137.0.7151.55. |
|---|---|
| AI Severity | Medium |
| Vendor | |
| Product | Chrome |
| Affected Version | prior to 137.0.7151.55 |
Additional Information
| CVE List | |
|---|---|
| CWE List | |
| Bulletin Family | |
| Source Data | Google Chrome 137.0.7151.55 |
Source Information
| Source Data | Google Chrome 137.0.7151.55 |
|---|---|
| Source Link |
Description
Use after free in libvpx in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)
CVSS Score Summary
Base Score: 0.0 ()