CVE-2025-5419 | Attaxion

CISA Known Exploited Vulnerability (KEV)

Name

Google Chromium V8 Out-of-Bounds Read and Write Vulnerability

Exploit added

June 5, 2025

Action due

June 26, 2025

Action required

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Description

Out of bounds read and write in V8 in Google Chrome prior to 137.0.7151.68 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

References

Weakness Enumeration

CWE-ID	CWE Name
CWE-125	Out-of-bounds Read

Known Affected Software Configurations

cpe:2.3:a:microsoft:edge_chromium:135.0.3179.98:::::::*
cpe:2.3:a:microsoft:edge_chromium:134.0.3124.93:::::::*
cpe:2.3:a:microsoft:edge_chromium:107.0.5304.150:::::::*
cpe:2.3:a:microsoft:edge_chromium:137.0.3296.62:::::::*
cpe:2.3:a:microsoft:edge_chromium:136.0.3240.50:::::::*
cpe:2.3:a:google:chrome:134.0.6998.88:::::::*
cpe:2.3:a:google:chrome:133.0.6943.98:::::::*
cpe:2.3:a:google:chrome:133.0.6943.126:::::::*
cpe:2.3:a:google:chrome:133.0.6943.53:::::::*
cpe:2.3:a:google:chrome:133.0.69943.98:::::::*
cpe:2.3:a:google:chrome:131.0.6778.204:::::::*
cpe:2.3:a:google:chrome:135.0.7049.52:::::::*
cpe:2.3:a:google:chrome:131.0.6778.264:::::::*
cpe:2.3:a:google:chrome:134.0.6998.117:::::::*
cpe:2.3:a:google:chrome:134.0.6998:::::::*
cpe:2.3:a:google:chrome:134.0.6998.177:::::::*
cpe:2.3:a:google:chrome:134.0.6998.35:::::::*
cpe:2.3:a:google:chrome:131.0:::::::*
cpe:2.3:a:google:chrome:129.0:::::::*
cpe:2.3:a:google:chrome:132.0.6834.83:::::::*
cpe:2.3:a:google:chrome:130.0:::::::*
cpe:2.3:a:google:chrome:128.0:::::::*
cpe:2.3:a:google:chrome:132.0:::::::*
cpe:2.3:a:google:chrome:127.0:::::::*
cpe:2.3:a:google:chrome:126.0:::::::*
cpe:2.3:a:google:chrome:124.0:::::::*
cpe:2.3:a:google:chrome:133.0:::::::*
cpe:2.3:a:google:chrome:125.0:::::::*
cpe:2.3:a:google:chrome:107.0.5304.87:::::::*
cpe:2.3:a:microsoft:edge_chromium:111.0.1661.62::::-:::
cpe:2.3:a:microsoft:edge_chromium:112.0.1722.34::::-:::
cpe:2.3:a:microsoft:edge_chromium:111.0.1661.51::::-:::
cpe:2.3:a:microsoft:edge_chromium:110.0.1587.78::::-:::
cpe:2.3:a:microsoft:edge_chromium:111.0.1661.44::::-:::
cpe:2.3:a:microsoft:edge_chromium:109.0.1518.140::::-:::
cpe:2.3:a:microsoft:edge_chromium:109.0.1518.115::::-:::
cpe:2.3:a:microsoft:edge_chromium:107.0.1418.42::::-:::
cpe:2.3:a:microsoft:edge_chromium:109.0.1518.49::::-:::
cpe:2.3:a:microsoft:edge_chromium:108.0.1462.95::::-:::
cpe:2.3:a:microsoft:edge_chromium:106.0.1370.42::::-:::
cpe:2.3:a:microsoft:edge_chromium:112.0.1722.46::::-:::
cpe:2.3:a:microsoft:edge_chromium:110.0.1587.69::::-:::
cpe:2.3:a:microsoft:edge_chromium:107.0.1418.35::::-:::
cpe:2.3:a:microsoft:edge_chromium:107.0.1418.26::::-:::
cpe:2.3:a:microsoft:edge_chromium:108.0.1462.46::::-:::
cpe:2.3:a:microsoft:edge_chromium:108.0.1462.54::::-:::
cpe:2.3:a:microsoft:edge_chromium:107.0.1418.52::::-:::
cpe:2.3:a:microsoft:edge_chromium:104.0.1293.70::::-:::
cpe:2.3:a:microsoft:edge_chromium:110.0.1587.46::::-:::
cpe:2.3:a:microsoft:edge_chromium:108.0.1462.76::::-:::
cpe:2.3:a:microsoft:edge_chromium:104.0.1293.54::::-:::
cpe:2.3:a:microsoft:edge_chromium:103.0.1264.62::::-:::
cpe:2.3:a:microsoft:edge_chromium:109.0.1518.52::::-:::
cpe:2.3:a:microsoft:edge_chromium:103.0.1264.71::::-:::
cpe:2.3:a:microsoft:edge_chromium:102.0.1245.50::::-:::
cpe:2.3:a:microsoft:edge_chromium:110.0.1587.57::::-:::
cpe:2.3:a:microsoft:edge_chromium:109.0.1518.78::::-:::
cpe:2.3:a:microsoft:edge_chromium:108.0.1462.83::::-:::
cpe:2.3:a:microsoft:edge_chromium:106.0.1370.59::::-:::
cpe:2.3:a:microsoft:edge_chromium:103.0.1264.77::::-:::
cpe:2.3:a:microsoft:edge_chromium:100.0.1185.50::::-:::
cpe:2.3:a:microsoft:edge_chromium:111.0.1661.43::::-:::
cpe:2.3:a:microsoft:edge_chromium:106.0.1370.86::::-:::
cpe:2.3:a:microsoft:edge_chromium:100.0.1185.57::::-:::
cpe:2.3:a:microsoft:edge_chromium:112.0.1722.39::::-:::
cpe:2.3:a:microsoft:edge_chromium:108.0.1462.87::::-:::
cpe:2.3:a:microsoft:edge_chromium:100.0.1185.60::::-:::
cpe:2.3:a:microsoft:edge_chromium:109.0.1518.100::::-:::
cpe:2.3:a:microsoft:edge_chromium:110.0.1587.63::::-:::
cpe:2.3:a:microsoft:edge_chromium:106.0.1370.47::::-:::
cpe:2.3:a:microsoft:edge_chromium:107.0.1418.62::::-:::
cpe:2.3:a:microsoft:edge_chromium:105.0.1343.42::::-:::
cpe:2.3:a:microsoft:edge_chromium:101.0.1210.53::::-:::
cpe:2.3:a:microsoft:edge_chromium:110.0.1587.49::::-:::
cpe:2.3:a:microsoft:edge_chromium:105.0.1343.27::::-:::
cpe:2.3:a:microsoft:edge_chromium:102.0.1245.44::::-:::
cpe:2.3:a:microsoft:edge_chromium:105.0.1343.33::::-:::
cpe:2.3:a:microsoft:edge_chromium:101.0.1210.39::::-:::
cpe:2.3:a:microsoft:edge_chromium:104.0.1293.63::::-:::
cpe:2.3:a:microsoft:edge_chromium:110.0.1587.50::::-:::
cpe:2.3:a:microsoft:edge_chromium:109.0.1518.95::::-:::
cpe:2.3:a:microsoft:edge_chromium:106.0.1370.61::::-:::
cpe:2.3:a:microsoft:edge_chromium:110.0.1587.56::::-:::
cpe:2.3:a:microsoft:edge_chromium:109.0.1518.55::::-:::
cpe:2.3:a:microsoft:edge_chromium:109.0.1518.61::::-:::
cpe:2.3:a:microsoft:edge_chromium:106.0.1370.37::::-:::
cpe:2.3:a:microsoft:edge_chromium:109.0.1518.69::::-:::
cpe:2.3:a:microsoft:edge_chromium:102.0.1245.56::::-:::
cpe:2.3:a:microsoft:edge_chromium:106.0.1370.52::::-:::
cpe:2.3:a:microsoft:edge_chromium:112.0.1722.58::::-:::
cpe:2.3:a:microsoft:edge_chromium:100.0.1185.39::::-:::
cpe:2.3:a:microsoft:edge_chromium:107.0.1418.24::::-:::
cpe:2.3:a:microsoft:edge_chromium:105.0.1343.50::::-:::
cpe:2.3:a:microsoft:edge_chromium:107.0.1418.56::::-:::
cpe:2.3:a:microsoft:edge_chromium:104.0.1293.78::::-:::
cpe:2.3:a:microsoft:edge_chromium:105.0.1343.53::::-:::
cpe:2.3:a:microsoft:edge_chromium:104.0.1293.81::::-:::
cpe:2.3:a:microsoft:edge_chromium:102.0.1245.62::::-:::
cpe:2.3:a:microsoft:edge_chromium:112.0.1722.68::::-:::
cpe:2.3:a:microsoft:edge_chromium:112.0.1722.64::::-:::

Details

Source:
NVD

Published:
June 3, 2025

Updated:
June 23, 2025

Risk information

CVSS v3

Base score:
8.8

Severity:

HIGH

Vector:
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CVSS v2

Not defined