CVE-2025-0435
Debian Security Advisory 5844-1
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Inappropriate implementation in Navigation in Google Chrome on Android prior to 132.0.6834.83 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: High)
Una implementación inadecuada en la navegación en Google Chrome en Android anterior a la versión 132.0.6834.83 permitió que un atacante remoto suplantara la interfaz de usuario a través de una página HTML manipulada. (Gravedad de seguridad de Chromium: alta)
An update that fixes 13 vulnerabilities is now available. This update for chromium fixes the following issues. Out of bounds memory access in V8. Inappropriate implementation in Navigation Integer overflow in Skia. Out of bounds read in Metrics Stack buffer overflow in Tracing Race in Frames. Inappropriate implementation in Fullscreen. Inappropriate implementation in Fenced Frames. Inappropriate implementation in Payments. Insufficient data validation in Extensions. Inappropriate implementation in Extensions. Inappropriate implementation in Navigation. Inappropriate implementation in Compositing third_party/devtools-frontend/src/node_modules/fast-glob.
CVSS Scores
SSVC
- Decision:Track
Timeline
- 2025-01-13 CVE Reserved
- 2025-01-15 CVE Published
- 2025-03-19 CVE Updated
- 2025-07-17 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-451: User Interface (UI) Misrepresentation of Critical Information
CAPEC
References (2)
URL | Tag | Source |
---|---|---|
https://chromereleases.googleblog.com/2025/01/stable-channel-update-for-desktop_14.html | ||
https://issues.chromium.org/issues/379652406 |
URL | Date | SRC |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Google Search vendor "Google" | Chrome Search vendor "Google" for product "Chrome" | 132.0.6834.83 Search vendor "Google" for product "Chrome" and version "132.0.6834.83" | en |
Affected
|