CVE-2025-11216

Опубликовано: 06 нояб. 2025

Источник: nvd

CVSS3: 6.3

EPSS Низкий

Описание

Inappropriate implementation in Storage in Google Chrome on Mac prior to 141.0.7390.54 allowed a remote attacker to perform domain spoofing via a crafted video file. (Chromium security severity: Low)

Ссылки

https://chromereleases.googleblog.com/2025/09/stable-channel-update-for-desktop_30.html
Release Notes
Vendor Advisory
https://issues.chromium.org/issues/419721056
Issue Tracking
Permissions Required

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*

Версия до 141.0.7390.54 (исключая)

cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*

EPSS

Процентиль: 20%

0.00065

Низкий

6.3 Medium

CVSS3

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

CVE-2025-11216

CVSS3: 6.3

ubuntu

13 дней назад

Inappropriate implementation in Storage in Google Chrome on Mac prior to 141.0.7390.54 allowed a remote attacker to perform domain spoofing via a crafted video file. (Chromium security severity: Low)

CVE-2025-11216

msrc

около 2 месяцев назад

Chromium: CVE-2025-11216 Inappropriate implementation in Storage

CVE-2025-11216

CVSS3: 6.3

debian

13 дней назад

Inappropriate implementation in Storage in Google Chrome on Mac prior ...

GHSA-823w-23rp-2jjx

CVSS3: 6.3

github

13 дней назад

Inappropriate implementation in Storage in Google Chrome on Mac prior to 141.0.7390.54 allowed a remote attacker to perform domain spoofing via a crafted video file. (Chromium security severity: Low)

EPSS

Процентиль: 20%

0.00065

Низкий

6.3 Medium

CVSS3

Дефекты

NVD-CWE-noinfo