CVE-2025-11216

Опубликовано: 06 нояб. 2025

Источник: nvd

CVSS3: 6.3

EPSS Низкий

Описание

Inappropriate implementation in Storage in Google Chrome on Mac prior to 141.0.7390.54 allowed a remote attacker to perform domain spoofing via a crafted video file. (Chromium security severity: Low)

Ссылки

https://chromereleases.googleblog.com/2025/09/stable-channel-update-for-desktop_30.html
Release Notes
Vendor Advisory
https://issues.chromium.org/issues/419721056
Issue Tracking
Permissions Required

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*

Версия до 141.0.7390.54 (исключая)

cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*

EPSS

Процентиль: 7%

0.00025

Низкий

6.3 Medium

CVSS3

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

CVE-2025-11216

CVSS3: 6.3

ubuntu

3 месяца назад

Inappropriate implementation in Storage in Google Chrome on Mac prior to 141.0.7390.54 allowed a remote attacker to perform domain spoofing via a crafted video file. (Chromium security severity: Low)

CVE-2025-11216

msrc

4 месяца назад

Chromium: CVE-2025-11216 Inappropriate implementation in Storage

CVE-2025-11216

CVSS3: 6.3

debian

3 месяца назад

Inappropriate implementation in Storage in Google Chrome on Mac prior ...

GHSA-823w-23rp-2jjx

CVSS3: 6.3

github

3 месяца назад

Inappropriate implementation in Storage in Google Chrome on Mac prior to 141.0.7390.54 allowed a remote attacker to perform domain spoofing via a crafted video file. (Chromium security severity: Low)

openSUSE-SU-2025:20020-1

suse-cvrf

4 месяца назад

Security update for chromium

EPSS

Процентиль: 7%

0.00025

Низкий

6.3 Medium

CVSS3

Дефекты

NVD-CWE-noinfo