CVE-2025-9478

Severity CVSS v4.0:

Pending analysis

Type:

CWE-416 Use After Free

Publication date:

26/08/2025

Last modified:

26/08/2025

Description

Use after free in ANGLE in Google Chrome prior to 139.0.7258.154 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical)

Impact

References to Advisories, Solutions, and Tools

https://chromereleases.googleblog.com/2025/08/stable-channel-update-for-desktop_26.html
https://issues.chromium.org/issues/437825940